Skip to content

persona-sati: refresh long-running authentication without restart #103

Description

@brandwe

Long-running persona-sati connections currently rely on process restart after bearer-token expiry. Add an explicit refresh/reconnect path without attempting to make an Agent Identity Blueprint act as an OAuth public client.

Acceptance criteria:

  • Expired authentication is detected and surfaced.
  • The client refreshes credentials or reconnects using the supported confidential-client model.
  • Recovery does not require restarting the Entrabot host process.
  • Tokens and assertions never appear in logs.
  • Tests cover expiry, refresh failure, and successful recovery.

Metadata

Metadata

Assignees

No one assigned

    Labels

    No labels
    No labels

    Type

    No type

    Fields

    No fields configured for issues without a type.

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions