From 947d80cd7d52c7c47bcfdc35326ba78146439c17 Mon Sep 17 00:00:00 2001
From: Timo Sirainen <timo.sirainen@open-xchange.com>
Date: Fri, 5 Dec 2025 09:38:08 +0200
Subject: [PATCH] oauth2: Add token_expire_grace_secs setting

---
 docs/core/config/auth/databases/oauth2.md | 5 +++++
 1 file changed, 5 insertions(+)

diff --git a/docs/core/config/auth/databases/oauth2.md b/docs/core/config/auth/databases/oauth2.md
index 234d6bad3..7d8a25258 100644
--- a/docs/core/config/auth/databases/oauth2.md
+++ b/docs/core/config/auth/databases/oauth2.md
@@ -299,6 +299,11 @@ report OIDC configuration URL as `openid-configuration` element in error JSON.
 ## Timeout in milliseconds
 # timeout_msecs = 0
 
+## Specifies how long after token expiration it is still accepted. It
+## shouldn't be 0 because clocks aren't exact, and network can add some
+## delays. v3.0.3+
+# token_expire_grace_secs = 60
+
 ## Enable debug logging
 # debug = no