-
Epic
-
Resolution: Unresolved
-
Undefined
-
None
-
None
-
Allow configuration of auth refresh token cookie expiry time
-
2
-
False
-
-
False
-
To Do
-
RHIDP-4747 - Configurable expiry on refresh token cookie
-
QE Needed, Docs Needed, TE Needed, Customer Facing, PX Needed
-
50% To Do, 0% In Progress, 50% Done
-
-
-
RHDH Security 3266, RHDH Security 3267/3268
EPIC Goal
The maxAge value of the refresh token cookie and granted scope cookie is being set here in OAuthCookieManager. Add a config in the `OAuthCookieManager` to provide the ability to customize the maxAge.
Background/Feature Origin
The 1000 days maxAge is also being set here in OAuthAdapter, need to investigate what this is used for a possible make this configurable as well.
Why is this important?
User Scenarios
Dependencies (internal and external)
Acceptance Criteria
Release Enablement/Demo - Provide necessary release enablement details
and documents
DEV - Upstream code and tests merged: <link to meaningful PR or GitHub
Issue>
DEV - Upstream documentation merged: <link to meaningful PR or GitHub
Issue>
DEV - Downstream build attached to advisory: <link to errata>
QE - Test plans in Playwright: <link or reference to playwright>
QE - Automated tests merged: <link or reference to automated tests>
DOC - Downstream documentation merged: <link to meaningful PR>
