Stores > Settings > Configuration > Services > OAuth
Access Token Expiration
Access Token Expiration
| Field |
Scope |
Description |
| Customer Token Lifetime (hours) |
Global |
Determines the length of time in hours before a customer API token expires. The customer token never expires if field is empty. Default value: 1 |
| Admin Token Lifetime (hours) |
Global |
Determines the length of time in hours before an admin API token expires. The admin token never expires if the field is empty. Default value: 4 |
Bearer customer and admin API token Lifetime and encryption algorithms are controlled by the JWT Authentication configuration settings.
Cleanup Settings
Cleanup Settings
| Field |
Scope |
Description |
| Cleanup Probability |
Global |
Specifies the number of OAuth requests before cleanup is launched. Do not enter 0 to disable cleanup. |
| Enable WSDL Cache |
Global |
Determines the age of entries in minutes, before they are cleaned. |
Consumer Settings
Consumer Settings
| Field |
Scope |
Description |
| OAuth consumer credentials HTTP Post timeout |
Global |
Specifies the number of seconds it takes for the system to timeout when customers post their credentials. |
| OAuth consumer credentials HTTP Post maxredirects |
Global |
Specifies the maximum number of redirects that are related to a posting of consumer credentials. |
| Expiration Period |
Global |
Determines the number of seconds before an unused key/secret expires after the OAuth token exchange begins. |
Authentication Locks
Authentication Locks
| Field |
Scope |
Description |
| Maximum Login Failures to Lock Out Account |
Global |
Specifies the Maximum Number of authentication failures to lock out account. |
| Lockout Time (seconds) |
Global |
Specifies the period of time in seconds after which account will be unlocked. |
