Hey John, Token expiration is limited via the configuration option in keystone, there is the concept of service tokens for long running operations[0] (ie live migration) if that would be related to your use case. You will need to reauth to refresh a token, aside from passing a service token alongside normal for [0]. [0] https://specs.openstack.org/openstack/keystone-specs/specs/keystone/ocata/allow-expired.html On Tue, Dec 3, 2019 at 9:30 AM Ratliff, John <jdratlif at iu.edu> wrote: > Is there an environment variable or command line option I can use to grab > a token from the command line with a longer than one hour expiration time? > > > > Is it possible to refresh the token without reauthenticating? > > > > Thanks. > > > > --John > > > _______________________________________________ > Community mailing list > Community at lists.openstack.org > http://lists.openstack.org/cgi-bin/mailman/listinfo/community > -------------- next part -------------- An HTML attachment was scrubbed... URL: <http://lists.openstack.org/pipermail/community/attachments/20191203/8a8ffc36/attachment-0001.html>