We read every piece of feedback, and take your input very seriously.
To see all available qualifiers, see our documentation.
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Token exchange is a versatile mechanism that should be constrained as much as feasible to avoid potential abuse.
A token-exchange client should have spelled out which exchanges it is allowed to do.
A first question concerns the lifetime of the token obtained through the exchange: is it allowed to be longer than that of the token to be exchanged?
There are arguments to let the remaining lifetime of a given token be an upper bound for the lifetime of any derived token.
In particular, by construction, it prevents the indefinite renewal of tokens through an exchange loop:
It is not clear, however, if such loops are likely to be made possible in actual service deployment and usage scenarios.
There also is an argument in favor of allowing derived tokens to have their own lifetimes, viz. improved security through shorter lifetimes!
Otherwise the original token would need to be given an extra long lifetime just to cover the eventualities of any derived tokens...
The text was updated successfully, but these errors were encountered:
No branches or pull requests
Token exchange is a versatile mechanism that should be constrained as much as feasible to avoid potential abuse.
A token-exchange client should have spelled out which exchanges it is allowed to do.
A first question concerns the lifetime of the token obtained through the exchange: is it allowed to be longer than that of the token to be exchanged?
There are arguments to let the remaining lifetime of a given token be an upper bound for the lifetime of any derived token.
In particular, by construction, it prevents the indefinite renewal of tokens through an exchange loop:
It is not clear, however, if such loops are likely to be made possible in actual service deployment and usage scenarios.
There also is an argument in favor of allowing derived tokens to have their own lifetimes, viz. improved security through shorter lifetimes!
Otherwise the original token would need to be given an extra long lifetime just to cover the eventualities of any derived tokens...
The text was updated successfully, but these errors were encountered: