Hey John,

Token expiration is limited via the configuration option in keystone, there is the concept of service tokens for long running operations[0] (ie live migration) if that would be related to your use case.

You will need to reauth to refresh a token, aside from passing a service token alongside normal for [0].

[0] https://specs.openstack.org/openstack/keystone-specs/specs/keystone/ocata/allow-expired.html

On Tue, Dec 3, 2019 at 9:30 AM Ratliff, John <jdratlif@iu.edu> wrote:

Is there an environment variable or command line option I can use to grab a token from the command line with a longer than one hour expiration time?

Is it possible to refresh the token without reauthenticating?

Thanks.

--John

_______________________________________________
Community mailing list
Community@lists.openstack.org
http://lists.openstack.org/cgi-bin/mailman/listinfo/community