I have created an app in developer console where I have added authorization 3LO OAUTH2.0 , in the authorization url added offline_access in the scope.
On the official documentation https://developer.atlassian.com/cloud/confluence/oauth-2-3lo-apps/ the refresh token expiration details are mentioned.
90 days - Inactivity expiration
365 days - absolute expiration
On the same doc we have OAuth0 by okta documentation where we can disable the expiration of refresh token, Is there a way in atlassian OAuth2.0 apps where we can disable the expiration of refresh token?
Thanks!
Hi,
The refresh token from Atlassian is a rotating one and not persistent. However, there's no configuration within the developer console that disables the refresh token. I believe the docs mention using the dashboard from auth0 directly. Although, I'm not certain how that works. Typically, I would say that as long as the user remains active within a 1 year period the refresh token won't be invalidated.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.