meutel/oauth2_proxy
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity

Use idToken expiry because that's the time checked for refresh

Browse Source 
RefreshSessionIfNeeded checks the token expiry, we want to use
the ID token's expiry
This commit is contained in:
Brian Van Klaveren 2019-02-12 10:32:26 -08:00
parent 8083501da6
commit b895f49c52
1 changed files with 1 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
providers/oidc.go
View File

@ -128,7 +128,7 @@ func (p *OIDCProvider) createSessionState(ctx context.Context, token *oauth2.Tok
IDToken: rawIDToken,
RefreshToken: token.RefreshToken,
CreatedAt: time.Now(),
ExpiresOn: token.Expiry,
ExpiresOn: idToken.Expiry,
Email: claims.Email,
User: claims.Subject,
}, nil