Having obtained an oauth (v1) token from a Bitbucket Server, and used it to make various authenticated requests via the REST API, it appears that tokens are being revoked after some time.
Why are tokens revoked, is there a timeout?
Is there any way to obtain a new token without the user having to explicitly approve it? (or some other way to avoid the token being revoked)
Hi Josh, access tokens do expire. If you got a refresh token then you can use it to get a new access token without requesting authorization from the end user.
For more information you can see Things you should know about tokens.
Hope that helps!
Ana
Thanks.
How do I get a refresh token from the Bitbucket Server REST API (or how do I get one along with the oauth_token)?
-Currently, when the user approves the oauth request and their browser requests http:://the.bitbucket.server/plugins/servlet/oauth/authorize they get a redirect to the registered URL ('my' site) with query parameters specifying the oauth_token and oauth_verifier. That is to say, I don't get a refresh token.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.