Refresh Tokens in Kubernetes when using an OpenID Provider -

- April 15, 2012

with kube configured point external opendid provider seems through browsing through code kube makes call opendid provider refresh token. when comes expects id_token come back. seems through tracing through code kube respect expire time bearer token , not make call opendid provider until bearer token expires.

is correct description of how refresh tokens work in kube?

kubernetes doesn't have concept of refresh tokens because kubernetes api server isn't client of openid provider, validates id_tokens issues specific client.

clients of openid provider wish talk api server on end user's behalf must manage refresh tokens issue more id_tokens current 1 expires. api server wont you.

Search This Blog

QR

Refresh Tokens in Kubernetes when using an OpenID Provider -

Comments

Post a Comment

Popular posts from this blog

c - zlib and gdi32 with OpenSSL? -

java - inputmismatch exception -

ios - Align baselines with characters in large line heights with Text Kit -