SylviaBABY commented on code in PR #10609:
URL: https://github.com/apache/apisix/pull/10609#discussion_r1418376357
##########
docs/en/latest/plugins/openid-connect.md:
##########
@@ -61,6 +61,7 @@ description: OpenID Connect allows the client to obtain user
information from th
| set_refresh_token_header | boolean | False | false
| | When set to true and a refresh token object is
available, sets it in the `X-Refresh-Token` request header.
|
| session | object | False |
| | When bearer_only is set to false, openid-connect will
use Authorization Code flow to authenticate on the IDP, so you need to set the
session-related configuration.
|
| session.secret | string | True | Automatic
generation | 16 or more characters | The key used for session encrypt and HMAC
operation.
|
+| refresh_session_interval | integer | False | 900
| | Refresh the users id_token(or session in the browser) after 900 seconds
without requiring re-authentication
|
Review Comment:
```suggestion
| refresh_session_interval | integer | False |
900 | | Refresh the user's id_token(or session in the browser) after 900
seconds without requiring re-authentication.
|
```
##########
docs/zh/latest/plugins/openid-connect.md:
##########
@@ -60,6 +60,7 @@ description: OpenID Connect(OIDC)是基于 OAuth 2.0 的身份认证协议
| set_refresh_token_header | boolean | 否 | false
| | 当设置为 `true` 并且刷新令牌可用时,则会将该属性设置在`X-Refresh-Token`请求头中。
|
| session | object | 否 |
| | 当设置 bearer_only 为 false 时,openid-connect 插件将使用
Authorization Code 在 IDP 上进行认证,因此你必须设置 session 相关设置。 |
| session.secret | string | 是 | 自动生成
| 16 个以上字符 | 用于 session 加密和 HMAC 计算的密钥。 |
+| refresh_session_interval | integer | 否 | 900 |
| 900 秒后刷新用户存储的session,而无需进行重新授权流程
|
Review Comment:
```suggestion
| refresh_session_interval | integer | 否 | 900
| | 900 秒后刷新用户存储的 session,而无需进行重新授权流程。
|
```
##########
docs/zh/latest/plugins/openid-connect.md:
##########
@@ -60,6 +60,7 @@ description: OpenID Connect(OIDC)是基于 OAuth 2.0 的身份认证协议
| set_refresh_token_header | boolean | 否 | false
| | 当设置为 `true` 并且刷新令牌可用时,则会将该属性设置在`X-Refresh-Token`请求头中。
|
| session | object | 否 |
| | 当设置 bearer_only 为 false 时,openid-connect 插件将使用
Authorization Code 在 IDP 上进行认证,因此你必须设置 session 相关设置。 |
| session.secret | string | 是 | 自动生成
| 16 个以上字符 | 用于 session 加密和 HMAC 计算的密钥。 |
+| refresh_session_interval | integer | 否 | 900 |
| 900 秒后刷新用户存储的session,而无需进行重新授权流程
|
Review Comment:
```suggestion
| refresh_session_interval | integer | 否 | 900
| | 900 秒后刷新用户存储的 session,而无需进行重新授权流程。
|
```
--
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.
To unsubscribe, e-mail: [email protected]
For queries about this service, please contact Infrastructure at:
[email protected]
