Oauth token validation

shivani42
Tera Contributor

Hi All,

We are having issue with MS dynamics integration.It was working fine till oct 9th. The issue is showing as invalid username and password combo. The MS team confirmed that the credentials which we used to fetch the refresh token got on Oct 9th. My confusion is, does it affect our SN integration. Because I saw there is no access token getting generated in manage token table. Even we have refresh token valid till Jan. My understanding is, we need the user credentials only one time in initial step but after that refresh token getting fetch access token to make the call.

Anyone has any idea?

Thanks,

Shivani

6 REPLIES 6

Runjay Patel
Giga Sage

Hi @shivani42 ,

 

if base credentials got changed or expired then refresh token and access token won’t work. You need to re-establish the connect again.

 

Please Mark Correct if this solves your query and also mark Helpful if you find my response worthy based on the impact.

Hi Runjay,

Thanks for the clarification.

Could you please help me with the below query. If you have any idea that would be helpful for me.

what are the best practices for refresh token process. If the user credentials gets changed which we used to get the oauth token in initial steps or the user leaves the company. How do we make sure that this does not affect our SN integrations.

Regards,

Shivani

Hi @shivani42 ,

 

I would suggest you to do below.

Set appropriate expiration times for access tokens and refresh tokens. Access tokens should have shorter lifespans, while refresh tokens can have longer lifespans.

 

Implement a mechanism to revoke refresh tokens when user credentials change or when a user leaves the company. This helps prevent unauthorized access.

 

Notify users when their credentials are changed or if their tokens are revoked, ensuring they are aware of any impact on integrations.

 

Please Mark Correct if this solves your query and also mark Helpful if you find my response worthy based on the impact.

 

Hi Runjay,

is it possible to create a mechanism to revoke the token when user credentials get changed. If the base credentials got changed, then how SN generate a new token.

 

Thanks,

Shivani