trustchain-oc1-orchestral
/
authentik
Archived
10
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

providers/oauth2: use auth_time from LOGIN event

This commit is contained in:
Jens Langhammer 2020-12-26 19:05:02 +01:00
parent 12ae867759
commit 29edbb0357
1 changed files with 2 additions and 3 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

5
authentik/providers/oauth2/models.py
View File

@ -484,10 +484,9 @@ class RefreshToken(ExpiringModel, BaseGrantModel):
exp_time = int( exp_time = int(
now + timedelta_from_string(self.provider.token_validity).seconds now + timedelta_from_string(self.provider.token_validity).seconds
) )
# Because this function is called after the AUTHORIZE_APPLICATION Event has been created, # We use the timestamp of the user's last successful login (EventAction.LOGIN) for auth_time
# we use the timestamp of that.
auth_event = Event.objects.filter( auth_event = Event.objects.filter(
action=EventAction.AUTHORIZE_APPLICATION, user=get_user(user) action=EventAction.LOGIN, user=get_user(user)
).latest("created") ).latest("created")
auth_time = int(dateformat.format(auth_event.created, "U")) auth_time = int(dateformat.format(auth_event.created, "U"))