Harbor Token Expiration (Minutes) setting #21656
Assignees
Labels
Comments
|
the token expiration is for the distribution v2 api token to pull artifacts, and the second session timeout is for the harbor UI session timeout. Can you explain the issue that you have in details? |
|
Sure, as you can see, I set up 360 minutes for token expiration, unfortunately, I'm getting unauthorized error for docker CLI (approximately) every 50–60 minutes. Then I have to open harbor UI, logout, login with Keycloak, exec I just want to perform those operations once a day (let's say once in 360m). If you're curious about versions:
Thanks! |
|
same problem |
ep4sh
added a commit
to ep4sh/harbor
that referenced
this issue
Feb 26, 2025
Signed-off-by: Pasha Radchenko <ep4sh2k@gmail.com>
|
My guess is that when the token is being created here (from user config):
So the default config (DefaultMgr) was used. I've also created a draft PR for it, please check. Thanks, P. |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Dear community,
could you please explain some features regarding token lifetime with OIDC.
I use OIDC (keycloak) and harbor (works perfectly, btw).
My token expiration is 360min, but it looks like the token is being expired earlier than the desired timeframe.
I guess it could depend on OIDC parameter like refresh token, isn't it?
thanks in advance,
P.
The text was updated successfully, but these errors were encountered: