After July 2021, the 2.3.x release line no longer received quality updates or user guide updates. PHP 7.3 reached end of support in December 2021, and Adobe Commerce 2.3.x reached end of support in September 2022. We strongly recommend upgrading to Adobe Commerce 2.4.x to help maintain PCI compliance.
OAuth
This site contains archived merchant documentation for a version of Adobe Commerce and Magento Open Source that has reached end-of-support.
The documentation available here is intended for historical reference only and is not maintained.
The Adobe Commerce Merchant Documentation for current releases is published on the Adobe Experience League.
Stores > Settings > Configuration > Services > OAuth
Access Token Expiration
Access Token Expiration
| Field | Scope | Description |
|---|---|---|
| Customer Token Lifetime (hours) | Global | Determines the length of time in hours before a customer API token expires. The customer token never expires if field is empty. Default value: 1 |
| Admin Token Lifetime (hours) | Global | Determines the length of time in hours before an admin API token expires. The admin token never expires if the field is empty. Default value: 4 |
Cleanup Settings
| Field | Scope | Description |
|---|---|---|
| Cleanup Probability | Global | Specifies the number of OAuth requests before cleanup is launched. Do not enter 0 to disable cleanup. |
| Enable WSDL Cache | Global | Determines the age of entries in minutes, before they are cleaned. |
Consumer Settings
| Field | Scope | Description |
|---|---|---|
| OAuth consumer credentials HTTP Post timeout | Global | Specifies the number of seconds it takes for the system to timeout when customers post their credentials. |
| OAuth consumer credentials HTTP Post maxredirects | Global | Specifies the maximum number of redirects that are related to a posting of consumer credentials. |
| Expiration Period | Global | Determines the number of seconds before an unused key/secret expires after the OAuth token exchange begins. |