The use of refresh tokens has been disabled for this application ?
-
I have issues refreshing JWT tokens. When I call
POST <host>/api/jwt/refreshI am getting:"fieldErrors": { "refreshToken": [ { "code": "[disabled]refreshToken", "message": "The use of refresh tokens has been disabled for this application." } ] }...but I fail to see why, since I believe I have enabled everything. Although I cannot find any specific setting for refresh, JWT are enabled across the board.
Running FusionAuth v1.35.0 in a K8S/helm/docker install, system has 2 applications and 2 tenants. Both apps and both tenants have JWTs enabled. Copy/paste from the "View tenant/application" looks like this (similar for both apps and both tenants):
JWT Issuer: ___.com Enabled: Yes JWT time to live in seconds: 1800 Access Token signing key name: webclient Access Token signing key Id: .... Id Token signing key name: webclient Id Token signing key Id: .... Refresh Token time to live in minutes: 43 200 Refresh Token expiration: Fixed. The expiration is calculated when the token is first created. Refresh Token usage: Reusable. The value does not change after it has been created. Access Token populate lambda Id: Feature disabled. No lambda selected. Id Token populate lambda Id: Feature disabled. No lambda selected. -
@jesper What does the
Securitytab on your application config say?In particular the
Generate refresh tokenssetting?https://fusionauth.io/docs/v1/tech/core-concepts/applications#security
