Stack Overflow
Stack Overflow

Questions tagged [access-token]

Access Token is the last token acquired during the OAuth authentication process.

4002 questions
1
vote
1 answer

Azure AD: Does the app registration process takes time to register self-signed certificate?

I am creating an application in Azure tenant with Microsoft graph API. At the same time, I am also uploading a self-signed certificate for an application. The OAuth client can request an access token by providing the user assertion. User assertion…
Pooja_2304
  • 53
  • 6
1
vote
1 answer

keycloak impossible to get client-roles inside access_token

I'm new with keycloak and following a tutorial over internet, I've configured a new realm "example" with a client "app-backend", related role "admin" (not composed) and realm role "app-admin"(composed with the client role "admin"). I've also created…
Davide System
  • 41
  • 8
1
vote
1 answer

Exchange Facebook Access Token with A JWT from my Backend

I'm developing an Android mobile app. I have successfully implemented Facebook Login as instructed here. After the user successfully logs in using Facebook, I'd like to send the Facebook access token to my back-end, which will respond with a JWT,…
Milad
  • 115
  • 1
  • 1
  • 11
1
vote
1 answer

Converting Curl to Nodejs Axios - Obtaining an Access Token

I am currently using curl in order to obtain an access token so I can consume an api with said token. The curl command I use is as follows: curl --user : https://api.ed-fi.org/v3/api/oauth/token --data…
curiousgeorge
  • 121
  • 3
  • 13
1
vote
1 answer

Is there a method to refresh token with timer using retrofit?

I am trying to retrieve data from an api using retrofit. The request am going to use needs an access token to pass in the header. The problem is that the token expires after 10 min and the refresh token request needs an unexpired token to create a…
Montassar Selmi
  • 23
  • 4
1
vote
1 answer

Can I add some information to resource in payload token by Keycloak?

Can I add some information to resource in payload token by Keycloak? I use keycloak for taking jwt. Token have roles assigned to some resource, f.e. "resource_access": { "subject-service": { "roles": [ "ADMIN" ] }, …
max_b
  • 151
  • 2
  • 10
1
vote
1 answer

Laravel Passport create multiple access token to each device id

my project allow multiple device login to same account. i able to generate access token and refresh token by calling to oauth/token endpoints. now the problem is i want to set one token for one device id. i created an endpoint…
JinQu Gan
  • 11
  • 3
1
vote
1 answer

secret manager - hide secret in AWS console

I am creating a new secret in AWS secret manager from the AWS console I used default encryption key to encrypt it. When I retrieve the secret from console I see it as plain text. Can the secret be encrypted (not see it as plain text) and saved in…
Aishvarya Suryawanshi
  • 55
  • 7
1
vote
1 answer

How to change "scopes" with Auth2.0 (Connexion, Swagger)

I am tying to understand this authentication-example with OAuth2.0 and am stuck at the scopes part: https://github.com/zalando/connexion/tree/master/examples/swagger2/oauth2 In app.yaml, we define 'uid' to be the necessary scope for our…
Nin4ikP
  • 135
  • 1
  • 13
1
vote
0 answers

How to create a token based authentication with SMS 2FA

I have an angular SPA that communicates with my asp.net core server. When a user login to my system using his phone number and password the server returns a self-signed access token. I'm trying to enable the user to activate a 2FA SMS…
Tal Humy
  • 1,197
  • 1
  • 18
  • 41
1
vote
1 answer

How to authentication against Web Api in an angular application without login

I have an Angular Application and a Web Api. When any user access to the app, he is route to login page and using the user's credentials I create a token (with JWT), with which the application authenticates to consume the api. However, login is not…
IranSosa
  • 51
  • 4
1
vote
2 answers

Session expired or invalid on using access token

I have created a connected app in which I have selected the OAuth Scopes "Access and manage your data (api)" and "Full access (full)" through the consumer key and consumer secret that was available in the new connected app, I have generated an…
Akshay Vasu
  • 445
  • 1
  • 12
  • 33
1
vote
1 answer

facebook token verification Go

I am able to verify a facebook access token from users by querying this endpoint https://graph.facebook.com/debug_token?input_token=&access_token= This means that I have to either request an app access token every-time I need to verify a request or…
jkerone
  • 73
  • 1
  • 1
  • 7
1
vote
0 answers

Auth0 - Refreshing token for google-oauth2 connections

I have a SPA react application where I am using auth0 for authentication. I would like to do a silent authentication and get a new token whenever site is refreshed, like it is suggested in this answer. I have an Auth class responsible for handling…
Leff
  • 1,968
  • 24
  • 97
  • 201
1
vote
2 answers

Does I understand access and refresh token technique for authentication correctly?

After doing some research in using JWT with Access Token and Refresh Token for authentication. I understand this in this way. After login, return to user Access Token and Refresh Token (using same technique JWT for both). Saving Refresh Token in…
Quang Khải Đàm
  • 555
  • 1
  • 6
  • 21
1 2 3
99 100