Auth0 Home Blog Docs

JWT Token expiration setting not applying to access_token

This change seems to have happened in the last week or so, but I can’t really pinpoint when. Also don’t know if it’s a bug or intentional.

The JWT Token expiration setting for my app (which is set to 86400 seconds) is now only being applied to the id_token and not the access_token.

The access_token expiration appears to be locked/capped at 7200 seconds now.

Som

The JWT Expiration that you set under an application’s settings always just applies to the ID Token, see the small print beneath the box.

To set the Access Token expiration, set it under the API’s settings.

1 Like

This topic was automatically closed 15 days after the last reply. New replies are no longer allowed.