amazon web services - Cognito - User Pools App Integration and Federation - ¿How refresh id_token? -


im using new feature of aws cognito, app integrated user pool more detail see https://github.com/aws/amazon-cognito-auth-js. here there example, in example can id token, access token refresh token empty.

i checked documentation in amazon congito --> amazon cognito api reference --> amazon cognito auth api reference --> authorization endpoint

  • for scope without openid

"the amazon cognito authorization server redirects app access token. since openid scope not requested, id token not returned. a refresh token never returned in flow. token , state returned in fragment , not in query string".

  • for scope openid

"the authorization server redirects app access token , id token (because openid scope included)."

note: here dont said nothing refresh token, response endopoint

"https://your_app/redirect_ur#id_token=id_token&access_token=access_token&token_type=bearer&expires_in=3600&state=state"

then ¿i dont know how can refresh id_token use more hour? (whit openid scope)

there 2 auth flow

  • implicit flow: sends tokenid access token
  • auth grant flow:at first code, can interchange triplet token (tokenid, access token , refresh token)

i using implicit flow , couldnt refresh token. in example, in index.html file, there line "auth.usecodegrantflow();" if uncomment line switch implicit flow --> auth grant flow. in moment there pull request because there bug in flow. more detail enter link description here (pull request #32)

i have changed dist/amazon-cognito-auth.js file same file pull request , work fine

note: important configure app in cognito user pool without secret because if dont have "invalid_client" error. because sdk doesnt contemplates header "authorization" when post /oauth/token endopoint in auth grant flow


Comments

Post a Comment

Popular posts from this blog

resizing Telegram inline keyboard -

telegram's inline keyboard great feature lots of different use cases. inline buttons added list of items this: inline_keyboard = [[inlinekeyboardbutton(text="button", callback_data="button"), inlinekeyboardbutton(text="reset",callback_data="reset")]] inline_keyboard_markup = inlinekeyboardmarkup(inline_keyboard) update.message.reply_text("hi", reply_markup=inline_keyboard_markup) the above code adds 2 buttons each half width of chat screen. i know the normal keyboard button there resize_keyboard parameter somehow can used. my question is there way resize inline buttons ? example make full width or quarter width. unfortunately, can't now. :( you can suggest @botsupport , might add feature next version.
Read more

command line - How can a Python program background itself? -

consider following python command-line program. doesn't work because incomplete, think illustrates problem: #!/usr/bin/python3 import multiprocessing pool = multiprocessing.pool() task in expensive_iterator_with_user_interaction(): pool.call_async(expensive_computation, (task,)) pool.close() print("dear user, may press ctrl-z , bg script.") pool.join() thus, problem scripts needs user input while it's launching expensive parallel processes. there moment when user interaction not needed anymore. then, ask user background process shell actions. however, can achieved program itself? (side note: core of problem entanglement of user input firing “expensive computations”. therefore, cannot separate both in 2 scripts, , letting 1 spawning other daemon.) the command screen may you. use screen -l create new session , run application. after inputting data, can press " ctrl-a " , press " d " on keyboard detach session. now...
Read more

php - "cURL error 28: Resolving timed out" on Wordpress on Azure App Service on Linux -

Image
my wordpress installation on azure app service on linux using custom docker container has slow response times. pages take around 20-40 seconds load. i have troubleshooting plugin installed indicates problem "curl error 28: resolving timed out after n milliseconds" when making requests following urls https://api.wordpress.org/core/version-check/1.7/ http://api.wordpress.org/core/version-check/1.7/ https://api.wordpress.org/plugins/update-check/1.1/ http://api.wordpress.org/plugins/update-check/1.1/ https://api.wordpress.org/themes/update-check/1.1/ http://api.wordpress.org/themes/update-check/1.1/ curl works fine on scm-site command line. example works ok. curl -x post http://api.wordpress.org/core/version-check/1.7/ edit if ssh container , run php code, works fine. <?php $url = 'http://api.wordpress.org/core/version-check/1.7/'; $fields = array( 'version' => urlencode('4.8.1'), 'php' => urlencode(...
Read more