mirror of
https://github.com/pomerium/pomerium.git
synced 2025-08-02 08:19:23 +02:00
fcbfdf3baf
Add a new runtime flag refresh_session_at_id_token_expiration to guard the recent changes related to ID token refresh, which are: 1. schedule session refresh based on ID token expiration (in addition to access token expiration and overall session lifetime) 2. always overwrite an existing ID token upon successful session refresh This requires a bit of refactoring to make the runtime flag setting available in the identity manager and OIDC code: - add a new WithRefreshSessionAtIDTokenExpiration(bool) option to the identity manager config - add a new OverwriteIDTokenOnRefresh bool field to oauth.Options Also, sort the existing runtime flag definitions. |
||
|---|---|---|
| .. | ||
| cache.go | ||
| cache_test.go | ||
| databroker.go | ||
| databroker_test.go | ||