Query on Oauth

Go to solution
Suggy
Giga Sage

‎07-21-2023 07:18 AM

I want out ServiceNow to act as a Oauth provider.

 

This doc link https://docs.servicenow.com/de-DE/bundle/sandiego-platform-security/page/administer/security/task/t_... says

"Access Token: By default, an instance issues access tokens with a 30-minute lifespan in the scenario where the instance is the OAuth provider. For third-party tokens, 30 days."

 

What exactly is the meaning of this specific phrase "For third-party tokens, 30 days"?

 

 

0 Helpfuls
  • 622 Views
1 ACCEPTED SOLUTION
7 REPLIES 7

Go to solution
Suggy
Giga Sage
In response to Randheer Singh

‎07-25-2023 04:19 AM

Hi @Randheer Singh 

This is what the doc currently states:

  • Access Token: By default, an instance issues access tokens with a 30-minute lifespan in the scenario where the instance is the OAuth provider. For third-party tokens, 30 days.
  • Refresh Token: By default, an instance issues refresh tokens with a 100-day lifespan in the scenario where the instance is the OAuth provider. For third-party tokens, 365 days.

So you mean above highlighted text is wrong. It should have been updated as "Token expiration for 3rd party tokens will be specified by the token issuer (3rd party provider)" right?

 

Go to solution
Randheer Singh
ServiceNow Employee
ServiceNow Employee

‎07-25-2023 10:51 AM

@Suggy, Yes.

Go to solution
Suggy
Giga Sage
In response to Randheer Singh

‎07-26-2023 12:39 AM

Thanks for the clarification. I spent a lot of time to understand that, and finally have the clarity now. I have even given the feedback to that doc link and knowledge article for correction.

0 Helpfuls