Query/Question
An AccessToken for a ManagedIdentityCredential expires 2 minutes prior to the actual expiry of the underlying token. As these jwt-tokens seem to have a lifetime of 6-8 hours, would it not make sense to have the refresh happen a bit sooner? Or make it configurable? (to prevent disruptions if the token-refresh fails for more than 2min due to service disruptions)
Why is this not a Bug or a feature Request?
It may be that the answer is "Refresh of tokens via metadata service instance will never fail for more than 2 minutes"..
Query/Question
An
AccessTokenfor aManagedIdentityCredentialexpires 2 minutes prior to the actual expiry of the underlying token. As these jwt-tokens seem to have a lifetime of 6-8 hours, would it not make sense to have the refresh happen a bit sooner? Or make it configurable? (to prevent disruptions if the token-refresh fails for more than 2min due to service disruptions)Why is this not a Bug or a feature Request?
It may be that the answer is "Refresh of tokens via metadata service instance will never fail for more than 2 minutes"..