Hi!
I’m trying to make a forever session to work, but after I send a PUT request to /user/session I get a new token.
This is what I’m doing (always using the embedded test_rest.html client):
- POST to /user/session and copy the session token.
- I’m able to use this token to access any resource allowed by this user’s role.
- After the session TTL expires (currently set to 60) any request using this token returns a message saying the token has expired (everything is ok up to this point).
- I use the expired token to send a PUT request to /user/session trying to refresh it, but by doing so I get a brand new token in response to this request, and the token acquired in step 1 is still “expired”.
I’m running the Bitnami stack and my .env file has the following information uncommented:
DF_ALLOW_FOREVER_SESSIONS=true
DF_JWT_TTL=60
DF_JWT_REFRESH_TTL=20160
I can see these options enabled when I GET /system/environment.
Why am I getting a new token instead of refreshing the old one?
Thanks!
Elvis