What is the OAUTH authorization code lifetime ?

Rufus31415

Hi,

I am prototyping an app using the OnShape Rest API. The authorization code seems to expire shortly after it is issued, but what is its exact lifetime ?

awk

The OAuth bearer token expires 60 minutes after it's first issued. The 'nonce' (the code used in combination with the OAuth client ID and OAuth Client secret to obtain a bearer token) expires after approx 3 minutes.

Beware that if you repeated obtain a bearer token for the same grant in quick succession you'll get the same token with a decreasing expiration:

Ask for a bearer token at noon, and you'll get one that expires at 13:00
Ask for the same bearer token at 12:15 and you'll get the same one that still expires at 13:00 (45 minutes time)
Ask for the same bearer token at 12:59 and you'll still get the same one that expires at 13:00 (in one minute)

More details are available in the developer portal (use the help menu to get the documentation and review the OAuth section)

Rufus31415

Thank you very much for your answer
!

awk

The OAuth bearer token expires 60 minutes after it's first issued. The 'nonce' (the code used in combination with the OAuth client ID and OAuth Client secret to obtain a bearer token) expires after approx 3 minutes.

Beware that if you repeated obtain a bearer token for the same grant in quick succession you'll get the same token with a decreasing expiration:

Ask for a bearer token at noon, and you'll get one that expires at 13:00
Ask for the same bearer token at 12:15 and you'll get the same one that still expires at 13:00 (45 minutes time)
Ask for the same bearer token at 12:59 and you'll still get the same one that expires at 13:00 (in one minute)

More details are available in the developer portal (use the help menu to get the documentation and review the OAuth section)

Rufus31415

Thank you very much for your answer
!