-
Notifications
You must be signed in to change notification settings - Fork 796
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Entra access token authentication policies such as BearerTokenAuthenticationPolicy
should respect refresh_on
information
#22837
Comments
🤔 on second thought I believe the only change we need from MSAL is to expose any |
On third thought, this is blocked because MSAL's token cache has a hardcoded expiration time preventing us from acquiring a new token when a cached one has at least 5 minutes left to expiry. |
Long lived credentials such as those received from managed identity authentication include additional metadata concerning when a token can/should be refreshed. Our authentication policies should take this information into account when refreshing access tokens.
This involves:
AccessToken
type to include this optional informationAccessToken
The text was updated successfully, but these errors were encountered: