File tree Expand file tree Collapse file tree 1 file changed +4
-2
lines changed
src/content/docs/identityserver/tokens Expand file tree Collapse file tree 1 file changed +4
-2
lines changed Original file line number Diff line number Diff line change @@ -175,8 +175,10 @@ Keep in mind that these actions are disruptive and possibly alarming to the user
175175positives.
176176:::
177177
178- While replay and re-use detection can be useful, they can be tricky to implement. In load-balanced environments,
179- some form of synchronization will be required to avoid race conditions.
178+ While replay and re-use detection can be useful, they can be tricky to implement due to potential race conditions.
179+ On the server, you'll need a robust synchronization across instances (e.g. using our persisted grant store).
180+ On the client, refresh operations will have to be coordinated to not end up with invalid refresh tokens
181+ (e.g. when multiple client instances refresh in an uncontrolled way).
180182
181183Implementing replay detection can be done in a similar way to [ accepting consumed tokens] ( #accepting-consumed-tokens ) . Extending the
182184` AcceptConsumedTokenAsync ` method of the ` DefaultRefreshTokenService ` , you can add the additional revocation or alerting
You can’t perform that action at this time.
0 commit comments