public interface OidcRefreshCookieMaxAgeResolver
Max-Age of the OIDC refresh-token HttpOnly cookie.
Implementations are loaded from OidcConfig.PROP_OIDC_REFRESH_COOKIE_MAX_AGE_RESOLVER
when the class name is allowlisted in OidcConfig. When unset, not allowlisted, or
unloadable, DefaultOidcRefreshCookieMaxAgeResolver applies
OidcCookieUtil.DEFAULT_REFRESH_TOKEN_MAX_AGE.
Client-specific resolvers (e.g. APA privilege-based session rules) live outside
com.aspc.cms.rest.plugin.oidc and are referenced only via the property.
| Modifier and Type | Method and Description |
|---|---|
int |
resolveMaxAgeSeconds(OidcTokenResponse tokenResponse)
Returns the refresh-token cookie lifetime in seconds.
|
@CheckReturnValue
int resolveMaxAgeSeconds(@Nonnull
OidcTokenResponse tokenResponse)
tokenResponse - tokens returned from Cognito (access, ID, optional refresh)Max-Age in seconds (must be >= 0)stSoftware Copyright © 2001-2014 stSoftware All Rights Reserved.