{var%20f='http://v.t.sina.com.cn/share/share.php?appkey=1515056452',u=z||d.location,p=['&url=',e(u),'&title=',e(t||d.title),'&source=',e(r),'&sourceUrl=',e(l),'&content=',c||'gb2312','&pic=',e(p||'')].join('');function%20a(){if(!window.open([f,p].join(''),'mb',['toolbar=0,status=0,resizable=1,width=440,height=430,left=',(s.width-440)/2,',top=',(s.height-430)/2].join('')))u.href=[f,p].join('');};if(/Firefox/.test(navigator.userAgent))setTimeout(a,0);else%20a();})(screen,document,encodeURIComponent,'','','https://www.manongdao.com/data/attach/logo/logo.png', '推荐 你好瞎i 的问题《Mobilefirst 8 extend login timeout by acquiring re》','https://www.manongdao.com/q-443645.html','页面编码gb2312|utf-8默认gb2312'));){kind=link}
Platform: ionic 3
Objective:
For protected resources, there's a scope to protected with security checking with timeout.
Beside kicking out user when idling like 1 min, refresh login session(access token?) after each adapter call.
If better, can refresh login session with a call.
Finding:
Tried obtainAccessToken and insert that in WLResourceRequest.
To me, it just uses Remember Me Duration instead of Success State Expiration.
But after Remember Me Duration, it still logout without updating login session.
This is a duplicate of Mobilefirst 8.0 Session timeout implementation as there is no final solution.
Thanks for any help
IBM MobileFirst released special type of token called Refresh token which can be used to obtain a new access token when the access token expires.The refresh tokens are long-lived tokens and remain valid for a longer duration of time compared to access tokens.
Enabling refresh tokens feature :
Refresh token feature can be enabled using the following properties on client side and server side respectively.
client-side property File name.: mfpclient.properties Property name: wlEnableRefreshToken Property value: trueFor example,wlEnableRefreshToken=trueserver-side property File name: server.xml Property name: mfp.security.refreshtoken.enabled.apps Property value: application bundle id separated by ‘;’
For example,
Use different bundle ids for different platforms.
For more details, refer:Refresh token
NOTE: This feature available from from 8.0.0.0-MFPF-IF201711230641-CDUpdate-01 and only in Android ,soon this feature will be available for iOS as well.