Skip to main content
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] [List Home]
[soteria-dev] Revocation of access tokens
  • From: Manuel Zaldivar Alcedo <manuel.zaldivar@xxxxxxxxxxxxxxxxxx>
  • Date: Mon, 16 Oct 2023 09:11:50 +0000
  • Accept-language: es-ES, en-US
  • Arc-authentication-results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=grupoenergetico.es; dmarc=pass action=none header.from=grupoenergetico.es; dkim=pass header.d=grupoenergetico.es; arc=none
  • Arc-message-signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=68tYr7YrFaHldxTERt08430lwAeZQWg0ToXsDSyI5Qk=; b=O6FnVr5VEZo9GkC0Puc3yTejgSjliyZi6MgYFUwN0pHUsZohVhXb7nwJBYtV6mvt7XLsfhCyVDKjj2QBlY+kGeCLLvDnRVEuk9cj9+76z7FU6aT0PIvBfY8g7t6FDJfRtZjHgWgMwcsBGHVHMreiwHhvUjdEiQppWm7GjkOVQr5bDYlrI7vcmZGZ3gC/2P8Q/JDpEDge/kkWwNXFIIDCUPvCRzHay/RUV+7H9Eb3O3V/ZldxuoyJ2tcDNBVQDtwbHOV4Gn9zZNlC4Q09QqL0Dr/kdHECWTZ2v34JUl2u7AfZRc64ky2D+RI4I5Wtf33tYAk8nQOj8qPYgD4KRUQExw==
  • Arc-seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=g5CfQUB3osFFOFDCnjnhNLzbwR57IbjuakQq98om19bcFuXRV3JppZUMq4LaKbF9LVLf8lCgXGIhOhbO2UViJc+eI2LZpbJ+dS7uEPRwtywobg8Zc2CVFeoAulX6Ehvn7/7iBbsT2QOZXchjLfYavu1LRlLfLWJfIC1hlIljuCwNrRxhtgub3qWCXBRoIDIP7c4CynnzYTdim1j+KooiLa3/6mKYFiwDF5uybSkj9u3fzwFm34dM+kWku1zjX1jDUb/ZRBuxIwtN7wl68CircY91UFEXEMfdab2T9ygu5z2ynXXtvv9HimtcGkZNi3hFgLzUm2gjK5jami7PZw75eg==
  • Delivered-to: soteria-dev@xxxxxxxxxxx
  • List-archive: <https://www.eclipse.org/mailman/private/soteria-dev/>
  • List-help: <mailto:soteria-dev-request@eclipse.org?subject=help>
  • List-subscribe: <https://www.eclipse.org/mailman/listinfo/soteria-dev>, <mailto:soteria-dev-request@eclipse.org?subject=subscribe>
  • List-unsubscribe: <https://www.eclipse.org/mailman/options/soteria-dev>, <mailto:soteria-dev-request@eclipse.org?subject=unsubscribe>
  • Thread-index: AdoAD6RYp1wGdySPT7iQublAvhemuw==
  • Thread-topic: Revocation of access tokens

Hello everyone,

 

Current version of soteria does not make any validation of the access token to check if it was revoked by the OpenID Provider.

Let’s suppose an application which uses long-term access token issued to special users. It would be great to be able to check
the validity of access tokens against the OpenID Provider, not on every request (to avoid performance issues) but at regular
intervals…

 

Is this a good security approach?

Do you have any plan to add this feature?

Any workaround meanwhile?

 

Thanks

 

 

 

Back to the top