Refresh token is not returned using version 4.2.0

By: Martin Petri user 14 Dec 2020 at 7:46 a.m. CST

4 Responses
Martin Petri gravatar
Is there a workaround for this issue? https://github.com/GluuFederation/oxAuth/issues/1492 oxauth.log: 2020-12-14 13:40:37,892 DEBUG [qtp790067787-16] [gluu.oxauth.token.ws.rs.TokenRestWebServiceImpl] (TokenRestWebServiceImpl.java:116) - Attempting to request access token: grantType = client_credentials, code = null, redirectUri = null, username = null, refreshToken = null, clientId = 1501.314afb7f-c67e-4a2e-8d7b-1b4283c75b1e, ExtraParams = {client_assertion_type=[urn:ietf:params:oauth:client-assertion-type:jwt-bearer], client_assertion=[eyJraWQiOiIyYzRiZDliZS1lMGJkLTQ0M2QtOTAxNC0zOTBkOWViZTI3Njlfc2lnX3JzMjU2IiwidHlwIjoiSldUIiwiYWxnIjoiUlMyNTYifQ.eyJzdWIiOiIxNTAxLjMxM2FmYjNiLWM2N2UtNGEyZS04ZDdiLTFiNDI4M2M3NWIxZSIsImF1ZCI6Imh0dHBzOi8vbG9naW4uYXdpLmRlL294YXV0aC9yZXN0djEvdG9rZW4iLCJpc3MiOiIxNTAxLjMxM2FmYjNiLWM2N2UtNGEyZS04ZDdiLTFiNDI4M2M3NWIxZSIsImV4cCI6MTYwNzk1MzUzNywiaWF0IjoxNjA3OTUzMjM3LCJqdGkiOiJlMDY5NjAxYy1kMzc5LTRkZWQtOTNmNy04M2ZhMGIzODc1MTkifQ.ZrZio26_0GaFHq5exq8_kYLhYwx6YvURdQohCD6Arjvax1SP1p1THl9nPL0W_eePV_kLlskEX96s9l1pTFjKHhQPub3A_tSg5yZfkNL2uy1JQPij7xUsi2psCtY6AUwD15jcVOGg-cDJnAM8043IopJGpDN_bMO6gxd8J6KO8YX3tC8zuZ6Nr-y1JZuGKwBeFBAYO9lblVa7QYyDUMrZB3YqBdfLYYOC6OAtfT1X4U9Q67xIxsdQLM1u1g_T7sxe63mUg31ViG8hMTB6WSNwVatFZnkDJGgPw2xen3ZP2MrGLdExfcQu0liCatny7LO32-Vws43KbaLQmtOZ04Q4AQ], grant_type=[client_credentials], client_id=[1501.313afb3b-c67e-4a2e-8d7b-1b4283c75b1e], scope=[uma_protection]}, isSecure = true, codeVerifier = null, ticket = null Setting "forceOfflineAccessScopeToEnableRefreshToken = false" did not help. The refresh_token is returned using the same client with gluu 4.1.1. Thanks for your help! Martin
Ubuntu 18.04
closed

Answers

By Yuriy Zabrovarnyy staff 14 Dec 2020 at 8:18 a.m. CST

Copy
Yuriy Zabrovarnyy gravatar
We had issue there which is fixed in 4.2.2. So we recommend to use latest 4.2.2 (which is currently in development repo and is about to get into official release).

By Martin Petri user 14 Dec 2020 at 9:37 a.m. CST

Copy
Martin Petri gravatar
Hi Yuriy. We have a lot config & customizations. An update is not done in a few hours. No workaround for the problem?

By Yuriy Zabrovarnyy staff 14 Dec 2020 at 10:20 a.m. CST

Copy
Yuriy Zabrovarnyy gravatar
Actually setting `forceOfflineAccessScopeToEnableRefreshToken = false` should help. But you said that it was already tried. I wonder why it didn't help. Please double check client which you use in request really have `refresh_token` grant type. Also note that server re-loads configuration each 30 seconds.

By Martin Petri user 21 Dec 2020 at 3:58 a.m. CST

Copy
Martin Petri gravatar
We solved the problem by adding the scope "offline_acces".

Post an answer