Skip to content

Enable proactive renewal of Managed Identity tokens #4474

New issue
New issue
Closed
#5336
Closed
Enable proactive renewal of Managed Identity tokens#4474
#5336
Assignees
ahsonkhan
Labels
Azure.IdentityClientThis issue points to a problem in the data-plane of the library.feature-requestThis issue requires a new behavior in the product in order be resolved.
@joshfree

Description

@joshfree
joshfree
opened on Mar 21, 2023

Intro:
Refreshing the tokens with half lifetime would improve resiliency for clients if there's an ESTS outage while fetching a token.

Acceptance Criteria:
All MSI tokens are refreshed at least half lifetime token request is made after half lifetime

MSI has token lifetime of 24 hours. Refresh the tokens if refresh_in is passed from ESTS or at half lifetime if refresh_in isn't passed. For tokens which have lifetime of less than 2 hours, there are no changes to be made.

Metadata

Metadata

Assignees

Labels

Azure.IdentityClientThis issue points to a problem in the data-plane of the library.feature-requestThis issue requires a new behavior in the product in order be resolved.

Type

No type

Projects

Azure Identity SDK Improvements

Status

Done

Milestone

No milestone

Relationships

None yet

Development

No branches or pull requests

Issue actions