Services > OAuth

Last update: 2023-11-29
  • Created for:
  • Beginner
    Intermediate
    Admin
    Developer
    User

To access the store configuration settings, choose Stores > Settings > Configuration from the Admin sidebar.

Access Token Expiration

Access Token Expiration

Field Scope Description
Customer Token Lifetime (hours) Global Determines the length of time in hours before a customer API token expires. The customer token never expires if field is empty. Default value: 1
Admin Token Lifetime (hours) Global Determines the length of time in hours before an admin API token expires. The admin token never expires if the field is empty. Default value: 4
NOTE

Bearer customer and admin API token Lifetime and encryption algorithms are controlled by the JWT Authentication configuration settings.

Cleanup Settings

Cleanup Settings

Field Scope Description
Cleanup Probability Global Specifies the number of OAuth requests before cleanup is launched. Do not enter 0 to disable cleanup.
Enable WSDL Cache Global Determines the age of entries in minutes, before they are cleaned.

Consumer Settings

Consumer Settings

Field Scope Description
OAuth consumer credentials HTTP Post timeout Global Specifies the number of seconds it takes for the system to time out when customers post their credentials.
OAuth consumer credentials HTTP Post maxredirects Global Specifies the maximum number of redirects that are related to a posting of consumer credentials.
Expiration Period Global Determines the number of seconds before an unused key/secret expires after the OAuth token exchange begins.

Authentication Locks

Authentication Locks

Field Scope Description
Maximum Login Failures to Lock Out Account Global Specifies the Maximum Number of authentication failures to lock out account.
Lockout Time (seconds) Global Specifies the time period in seconds after which account is unlocked.

On this page