HonoClient is not able to refresh its access token for connections to hono components without re-create connection #647
Comments
|
see #530 |
|
Great this is exactly what I need. I close my issue because it duplicates #530. |
|
@DanielMaier-BSI A short term solution might be to set the timeout of the JWTs to a high value or to completely disable expiration (however, that would require a small code change). |
|
Hi @sophokles73 , we will think about your suggestion as a mid term solution. Perhaps it would be a good idea to be able to configure token expiration per user? The only difference to qdrouter endpoint I see is that the other endpoints might reveal even more sensitive data, e.g. credentials. |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Per default hono client gets disconnected from other hono components every 10 minutes with a "amqp:unauthorized-access" error because access token is expired.
This leads to undesirable behavior for users, e.g. protocol adapter reject messages with "Service Unavailable" when this happens. While "Service Unavailable" is just fine in exceptional cases, in my opinion it is not acceptable to occur on a regular basis. It is also hard to implement custom hono components with dependencies to other hono components without exposing this behavior to users.
As I understood hono client has no possibility to refresh its access token without creating a new connection. Would be great if hono client is able to refresh the access token on itself while keeping the connection alive.
What do you think about this issue? What needs to be changed to implement this?
The text was updated successfully, but these errors were encountered: