💬 RFC: Allow to do auto-refresh of OAuth tokens if user gives explicit consent for that #24818
Open
2 tasks done
Labels
area:scaffolder
Everything and all things related to the scaffolder project area
auth
rfc
Request For Comment(s)
🔖 Need
In case of having the scaffolder template which takes a while to perform the execution and requires using OAuth access token during this process, for example by triggering GitLab Api, it might happen that the token get expired.
Having a possibility to auto-refresh it meanwhile can make the flow more robust.
🎉 Proposal
Ask the consent from the user that we would like to use the token to auto-refresh it during a task run.
Based on #24815 we can check in background if token is about to expire, refresh it and auto-update it (i.e. with help of signals).
〽️ Alternatives
No response
❌ Risks
No response
👀 Have you spent some time to check if this RFC has been raised before?
🏢 Have you read the Code of Conduct?
The text was updated successfully, but these errors were encountered: