libre.sh/keycloak-scim
2
0
Fork 0
Code Issues 14 Pull requests Releases Packages Activity Actions 6

KEYCLOAK-12406 Add "Client Session Max" and "Client Session Idle"

Browse source
This commit is contained in:
Yoshiyuki Tabata 2020-01-16 13:24:17 +09:00 committed by Stian Thorgersen
parent d3e18744a8
commit 8d4e1a434b
1 changed files with 6 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

6
server_admin/topics/sessions/timeouts.adoc
View file

@ -46,6 +46,12 @@ There is a small window of time that is always added to the idle timeout before
|Offline Session Max
|For <<_offline-access, offline access>>, this is the maximum time before the corresponding offline token is revoked. This option controls the maximum time the offline token can remain active, regardless of user activity.
|Client Session Idle
|If the user is not active for longer than this timeout, refresh token requests will bump the idle timeout. It allows for the specification of a shorter idle timeout of refresh token than session idle timeout. And it can be overridden on individual clients. It is an optional configuration and if not set to a value bigger than 0 it uses the same idle timeout set in the SSO Session Idle configuration.
|Client Session Max
|The maximum time before a refresh token is expired and invalidated. It allows for the specification of a shorter timeout of refresh token than session timeout. And it can be overridden on individual clients. It is an optional configuration and if not set to a value bigger than 0 it uses the same idle timeout set in the SSO Session Max configuration.
|Access Token Lifespan
|When an OIDC access token is created, this value affects the expiration.