We’re using the Resource Owner Password method with MFA enabled. Our tokens’ expires_in is always 600 (10 minutes) regardless of what expiry time we set up on Auth0 dashboard. Any explanation or solution for this?
How to change the default 10min expiry for tokens generated via Resource Owner Password method + MFA
I’ve responded on the other thread: Default /mfa/ audience's token expiration time
This cannot be bypassed today. Feel free to add a note in our feedback page with your use case if you feel this should be configurable: Auth0: Secure access for everyone. But not just anyone.