In our application’s dashboard, changing the id token expiry from 86400 seconds to something like 300 seconds is not reflected when I view the logs coming thru from our mobile app after logging in–the expires_in value is still at 86400.
Am I misunderstanding the ID token expiration value?
Thank you for posting this topic on the Auth0 Community!
I did the following test regarding this query:
set id token expiration to 30 seconds for an application.
log in to the app and get the id_token
check the token exp on jw.io, and it shows the correct expiration time.
The expires_in is the expiration time of the access token. This article explains how to update the expiration time of the access token in case that is what you are trying to achieve.
Hope this helps!
Thank you for clarifying this!
Hi @lihua.zhang,
Your reply was very helpful!
In regards to the expires_in value being based on the expiration time of the access token, I have changed that value using the link provided, from 86400 to 60 seconds.
Unfortunately, even though that change has been made, the expires_at value still comes back as 24 hours.
Do you have any insight as to why this is the case? Any help would be greatly appreciated!
