Migrated from Redmine #1018 | Author: Marie Rajon
Status: New | Priority: High, I’m very impatient | Created: 2023-03-03
Hello,
We’ve had recent problems with 401 unauthorized access error, while using auth token and refresh token.
I had the information that the auth token was valid for 30min, and the refresh-token couldn’t expire.
Are these information still true ?
Thank you for your answer !
Benoit
Redmine Admin wrote:
Hi, yes, it is true but now you need to regenerate it (if you not did already) for security reasons.
Marie Rajon wrote:
Hello, I’m not sure if I understood properly, you mean we need to refresh the auth API call ? or the auth login and password ?
Do you have instabilities on this matter ?
We’ve restarded our services, and there have been new auth API calls, but we still notice 401 unauthorized access error that seem to occur randomly.
Thank you for your enlightment 
Redmine Admin wrote:
You had to regenerate it today only because we have to clean refresh tokens for security reasons. Sorry for inconvenience it may cause
Marie Rajon wrote:
Ok, thanks.
Is this matter finished, or can we still experience problems ?
Redmine Admin wrote:
it is finished.
(Short original content)