Skip to end of metadata
Go to start of metadata

Only available in the BiZZdesign on-premise solutionIf you are working with the cloud solution, you can contact BiZZdesign Support to submit a change request for these settings.

HoriZZon and the Activity Console receive tokens after authentication to access the APIs. HoriZZon only receives access tokens. The browser session is used to get a new access token when it expires. The Activity Console additionally receives a refresh token. The refresh token is stored locally by the Activity Console. It is used to get a new access token when it expires. Or it gets an access token when it is started.

Configuring the tokens should only be done by application administrators who are familiar with installing and configuring software and databases.


Required roles

System Administrator

Steps:

  1. In the sidebar menu, click Settings > General.

  2. On the general settings page, in Tokens public clients and Tokens confidential clients, specify the desired tokens settings for HoriZZon and the Activity Console.


    Access token lifetime: The maximum age of the access token, in seconds. This token is used by HoriZZon. If the box is empty, the default value of 300 seconds (5 minutes) is used. This is also the minimum allowed value.

    After setting the token lifetime, make sure that the cookies session timeout has the same value or higher, otherwise HoriZZon will not be able to refresh an expired access token, and the users will have to sign in again.

    Access token lifetime: The maximum age of the access token, in seconds. This token is used by the Activity Console. If the box is empty, the default value of 3600 seconds (60 minutes) is used. The minimum allowed value is 300 seconds (5 minutes).

    Refresh token lifetime: The maximum age of the refresh token, in seconds. This token is used by the Activity Console. If the box is empty, the default value of 7776000 seconds (90 days) is used. The minimum allowed value is 300 seconds (5 minutes).

    Set the value higher than the timeout of the Activity Console access token, which is 3600 seconds by default. If the value is not higher, the Activity Console will not be able to refresh an expired access token, and the users will have to sign in again.

    Is is also advised to set a high value, so users do not have to sign in after being inactive for a while.

  3. Click Apply to save the changes.



Related articles