Hey John, Token expiration is limited via the configuration option in keystone, there is the concept of service tokens for long running operations[0] (ie live migration) if that would be related to your use case. You will need to reauth to refresh a token, aside from passing a service token alongside normal for [0]. [0] https://specs.openstack.org/openstack/keystone-specs/specs/keystone/ocata/al... On Tue, Dec 3, 2019 at 9:30 AM Ratliff, John <jdratlif@iu.edu> wrote:

Is there an environment variable or command line option I can use to grab a token from the command line with a longer than one hour expiration time?

Is it possible to refresh the token without reauthenticating?

Thanks.

--John

_______________________________________________ Community mailing list Community@lists.openstack.org http://lists.openstack.org/cgi-bin/mailman/listinfo/community