How to configure RH-SSO Tokens to work with APIcast Introspection Policy

Solution Verified - Updated -

Issue

  • The token introspection endpoint might return the response {"active": false} even sooner than the actual token expiration time, thus making APIcast behave unexpectedly when using the token introspection policy.

Environment

  • Red Hat 3scale API Management Platform (3scale)
    • 2.5.0 On-Premises and above
    • SaaS
  • Red Hat Single Sign-On 7.2 and above

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase, tools, and much more.

Current Customers and Partners

Log in for full access

Log In

New to Red Hat?

Learn more about Red Hat subscriptions

Using a Red Hat product through a public cloud?

How to access this content