Having obtained an oauth (v1) token from a Bitbucket Server, and used it to make various authenticated requests via the REST API, it appears that tokens are being revoked after some time.
Why are tokens revoked, is there a timeout?
Is there any way to obtain a new token without the user having to explicitly approve it? (or some other way to avoid the token being revoked)
Hi Josh, access tokens do expire. If you got a refresh token then you can use it to get a new access token without requesting authorization from the end user.
For more information you can see Things you should know about tokens.
Hope that helps!
How do I get a refresh token from the Bitbucket Server REST API (or how do I get one along with the oauth_token)?
-Currently, when the user approves the oauth request and their browser requests http:://the.bitbucket.server/plugins/servlet/oauth/authorize they get a redirect to the registered URL ('my' site) with query parameters specifying the oauth_token and oauth_verifier. That is to say, I don't get a refresh token.
Connect with like-minded Atlassian users at free events near you!Find a group
Connect with like-minded Atlassian users at free events near you!
Unfortunately there are no AUG chapters near you at the moment.Start an AUG
We're bringing product updates and pro tips on teamwork to ten cities around the world.Save your spot