Re-access with token, and token duration. about oauth2 HOT 7 CLOSED

I have added a use example /try in the master branch:cc5f83eabeed9f6bd7a021ee8eb74dd8e0978a9e.

Change the expiration time of the token using the manager.SetAuthorizeCodeTokenCfg function:

manager.SetAuthorizeCodeTokenCfg(manage.DefaultAuthorizeCodeTokenCfg)

from oauth2.

@LyricTian thanks! I'll look on it.

from oauth2.

@LyricTian ok, I could understand more with this example. Thanks.

It could be silly question, but can I ask how client ID/user ID is received from token? It looks like it only sends token, but it seems it reads user/client information from it(looks like ValidationBearerToken does something...). Is there some logic for this?

from oauth2.

In fact, the access token represents the current logged-in user. Each time the server interacts with the server, the server knows which user or client it is. The client does not need to care about its own user ID or client ID.

from oauth2.

@LyricTian oh, sorry to make you complicate. What I mean is, is it possible to get client ID and user ID only with access token data, because localhost:9094/try only sends access token to server. If is not, is client data being stored in somewhere?

Thanks.

from oauth2.

You can use the access token to get the user ID and client ID from the server interface.

from oauth2.

@LyricTian thanks!

from oauth2.