Skip to content

(cognito): Support refresh token rotation #34344

New issue
New issue
Open
#34360
Open
(cognito): Support refresh token rotation#34344
#34360
Labels
@aws-cdk/aws-cognitoRelated to Amazon Cognitofeature-requestA feature should be added or improved.p2
@sugiruu

Description

@sugiruu
sugiruu
opened on May 2, 2025

Describe the feature

Cognito recently released support for short-lived refresh tokens. Supporting this new feature on CDK would be a nice addition.

Docs

Release announcement

Image

Use Case

Most OIDC clients expect refresh tokens to be short lived e.g. a new refresh token to be issue with each token refresh.

I have an application using the angular oidc client that's is failing the refresh token process, since the default behavior for cognito is to issue a long-lived refresh token.

[ERROR] - no refresh token found, please login 
[ERROR] - silent renew failed! Error: Error: no refresh token found, please login

Proposed Solution

No response

Other Information

No response

Acknowledgements

  • I may be able to implement this feature request
  • This feature might incur a breaking change

CDK version used

2.1013.0

Environment details (OS name and version, etc.)

Linux 6.14.4-arch1-1

Metadata

Metadata

Assignees

No one assigned

    Labels

    @aws-cdk/aws-cognitoRelated to Amazon Cognitofeature-requestA feature should be added or improved.p2

    Type

    No type

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions