How long does a session_token last?

Jase_Lindgren · August 24, 2020, 7:24pm

I have been looking high and low for a while now and I can’t find any information on how long a session_token stays valid.

I tried testing by writing a script that tries to authenticate with the python API every 10 minutes using the same session token. That was able to run for at least a couple days, which seems long for a session token to stay active. I assume that means that when the session token is used it is also renewed?

The REST API is clear that the access token lasts for 10 minutes and the refresh token is good for 24 hours but I cannot for the life of me find this information for the Python API.

tony · August 24, 2020, 8:47pm

Hey Jase,

I suspect that this is directly tied to the “User Session Expiry” setting in Site Prefs, but I can’t swear to it. I’m going to dig a little and let you know what I find out.

Edit: this is indeed the behavior.

Jase_Lindgren · August 24, 2020, 9:43pm

That makes sense. Thank you. Let me know what you find.

tony · August 24, 2020, 9:47pm

Just had it confirmed, that is indeed how it operates!