Expired User Code on Device Authorization Flow

bulatao.ramoncito · December 3, 2020, 1:08pm

I’m creating a command-line application using Device Authorization Flow:

Here is the sequence:

Authenticate my command-line application using sample command eg. myapp --login-device-authorization-flow
Command Line Application will provide login link (verification_uri with user_code)
Command Line Application polls for the access_token
User logs in on auth0 using provided link

Scenario:

User visits verification_uri with user_code then proceed to login link
User failed to log in due to some problem (eg. lost internet connection)
User visits again verification_uri with user_code then proceed to login link

Result:
Invalid or expired user code.

Question:
In the above scenario, the user cannot log in using the provided login link since the user code expired while the command line application is still polling for the access_token.

Is there a way the command line application determines user code has expired?

dan.woda · December 3, 2020, 10:27pm

Hi @bulatao.ramoncito,

There is an expires_in param in the response.

https://auth0.com/docs/flows/call-your-api-using-the-device-authorization-flow#device-code-response

Does that answer your question?

system · December 30, 2020, 11:16pm

This topic was automatically closed 15 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Example of CLI login through web browser in node Help auth0 , api , login	6	7239	April 23, 2021
Is it possible to invalidate a device code? Help missing-category , other	1	477	January 9, 2024
Validate Bearer access_token from Device Authorization flow Help device-flow	6	3259	August 13, 2021
Auth0 Device Flow Auto Login Help	3	1900	September 30, 2022
How to authenticate user from app in device flow rather than using browser? Help login-experience , new-universal-login-experience	0	10	September 24, 2024

Expired User Code on Device Authorization Flow

Related topics