Page MenuHomeSoftware Heritage
Create Task
Maniphest T3121

Improve handling of expired authentication tokens
Closed, MigratedEdits Locked
Actions

Description

Authentication tokens for the Web API expire after 30 days of inactivity so:

  • Documentation about that fact should be added.
  • Error message returned by the Web API should be more explicit, something like Offline token expired after 30 days of inactivity; please create a new one..
  • Expired tokens stored encrypted in swh-web database should be removed when a user browses the tokens Web UI.

Revisions and Commits

rDWAPPS Web applications
D5445rDWAPPSb055eb6bb10a auth: Inform user when one of his bearer token expired in tokens UI
rDAUTH Common authentication libraries
D5446rDAUTH309118c158d9 django/backends: Improve expired token handling
D5431rDAUTHd06924ed0069 django/backends: Improve error message when a bearer token expired
D5431rDAUTH9d9a0a335785 tests: Remove debug print

Event Timeline

anlambert triaged this task as Normal priority.Mar 12 2021, 3:17 PM
anlambert created this task.
anlambert added a project: Authentication.Mar 19 2021, 12:15 PM
anlambert added a revision: D5431: django/backends: Improve error message when a bearer token expired.Apr 6 2021, 7:06 PM
anlambert added a commit: rDAUTH9d9a0a335785: tests: Remove debug print.Apr 7 2021, 11:05 AM
anlambert added a commit: rDAUTHd06924ed0069: django/backends: Improve error message when a bearer token expired.
anlambert added a revision: D5445: auth: Inform user when one of his bearer token expired in tokens UI.Apr 7 2021, 6:44 PM
anlambert added a revision: D5446: django/backends: Improve expired token handling.Apr 7 2021, 6:52 PM
anlambert added a commit: rDAUTH309118c158d9: django/backends: Improve expired token handling.Apr 8 2021, 11:08 AM
anlambert added a commit: rDWAPPSb055eb6bb10a: auth: Inform user when one of his bearer token expired in tokens UI.Apr 8 2021, 5:15 PM
anlambert closed this task as Resolved.Apr 8 2021, 6:09 PM
anlambert claimed this task.

This is now deployed to production.

gitlab-migration changed the task status from Resolved to Migrated.Jan 8 2023, 4:33 PM
gitlab-migration claimed this task.
gitlab-migration added a subscriber: gitlab-migration.

This task has been migrated to GitLab.

About · Developer information · Legal