Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Client Authentication: Shorter TTL requires more frequent logins #174

Open
jstlaurent opened this issue Aug 12, 2024 · 0 comments
Open

Client Authentication: Shorter TTL requires more frequent logins #174

jstlaurent opened this issue Aug 12, 2024 · 0 comments
Assignees
@jstlaurent
Labels
bug Something isn't working
Milestone
XL Datasets

Comments

@jstlaurent
Copy link
Contributor

Context

The Hub-issued JSON Web Tokens contain a list of a user membership's in organizations. However, this list is established when the token is issued, and will be used to determine authorization for API access. If a user's membership changes before the token is renewed, it will become stale.

We have reduced the time to live of our tokens to shorten the staleness delay, but this seems to require the user to login more frequently. This is undesirable user experience.

Description

Investigate a better flow where the Hub-issued token is refreshed by getting a new JWT in exchange for the underlying, Clerk-issued token. The ensure_active_token method in the PolarisHubClient has such a mechanism.

Acceptance Criteria

  • The number of times a user is required to manually login is reduced

Links
@jstlaurent jstlaurent added the bug Something isn't working label Aug 12, 2024
@cwognum cwognum modified the milestones: XL Benchmarks, XL Datasets Aug 13, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@jstlaurent jstlaurent

Labels
bug Something isn't working
Projects
None yet
Milestone
XL Datasets
Development

No branches or pull requests
2 participants
@jstlaurent @cwognum