Set exp claim also for 0 AT lifetimes

indigo-iam · Sep 7, 2023 · 0c64dc6 · giacomini · Sep 9, 2023 · federicaagostini
1 parent 521019f
commit 0c64dc6
Showing 1 changed file with 2 additions and 2 deletions.
diff --git a/...server/src/main/java/org/mitre/oauth2/service/impl/DefaultOAuth2ProviderTokenService.java b/...server/src/main/java/org/mitre/oauth2/service/impl/DefaultOAuth2ProviderTokenService.java
@@ -220,10 +220,10 @@ public OAuth2AccessTokenEntity createAccessToken(OAuth2Authentication authentica
       token.setScope(scopeService.toStrings(scopes));
 
       // make it expire if necessary
-      if (client.getAccessTokenValiditySeconds() != null
-          && client.getAccessTokenValiditySeconds() > 0) {
+      if (client.getAccessTokenValiditySeconds() != null ) {
         Date expiration =
             new Date(System.currentTimeMillis() + (client.getAccessTokenValiditySeconds() * 1000L));
+
         token.setExpiration(expiration);
       }