Quick Start Guide

Dashboard

Overviews

Case detail (Caseoverview)

Case - event

Tasks

Case notes

Documents

User settings

Favorites

Table component

FAQ

Parallel cron - PostponedTaskCron

Crons

SMTP OAuth authentication

Configuring authentication modules

Active Directory Connector

Mobile App Setup for Your Environment

Scheme

Dynamic tables

Archiving

Scripts

Service console

Scheduled Tasks

HR Agenda

Sequences

CSP Headers

Logs

Access Token Settings & Session Expiration

Section Card

DataGrid Tanstack

Case Variables Tab

Process Template - Prints

Multi-instance

Assigning variables in a task

Shredding Process

Competences

Change in Role Assignment Logic to Competence-Based Assignment

Roles

Planning

Users

Organizational structure

Events

Translations

AXIOS API

Optimization of API calls on dynamic conditions

Filtering in a dynamic sheet using dynamic conditions

Search in a dynamic table by column value

DOCX document creation

MS Graph - cron configuration

ISDOC.PDF

DocuSign

DB View

TAS Forms

Activating the module on the environment

TAS Forms - secret creation guide for Docker Swarm

Filtering in a dynamic sheet using a URL parameter (static)

Optimizing Overviews with a Large Number of Cases

Section accessible only to partners

v5.7

v5.5

v5.7

v5.3

v5.5 (End of Support)

v5.1 (End of Support)

v4.15 (Obsolete version)

Dynamic conditions migration

PDF printing adjustment

Editing Task Description vs Task Instructions

Transpiling forEach to a for loop

Rendering HTML on Caseoverview

Lodash upgrade v4.17.x (>v5.5)

Main changes and deprecated features (v5.3 > v5.7)

Using validation functions

Differences between TAS4 and TAS5 - a complete overview

Best Practices for Upgrading from v4 to v5

Server prerequisites

Security and Data Protection

Security

Technological architecture

Adjustment in EWS after MS Exchange update (29.04.2025)

Token Expiration Settings
Session Expiration Warnings & Auto-Renewal
- Safe Testing Durations

All Categories /
Administrator Guide

Platform guide

Administration

Access Token Settings & Session Expiration

Access Token Settings & Session Expiration

Token Expiration Settings
Session Expiration Warnings & Auto-Renewal
- Safe Testing Durations

Token Expiration Settings

cache.accessTokenExpireDuration

This parameter defines the expiration time (in seconds) for the access token. After this duration, users must log in again. The default value is 28,800 seconds (8 hours).

The session expiration warning (notifyBeforeExpiration) and automatic refresh (refreshBeforeExpiration) depend on this setting.

cache.refreshTokenExpireDuration

This parameter is usually not relevant in practice, as a new refresh token is generated with each login. The default is 30 days, meaning users who log in at least once a month will not experience refresh token expiration.

Session Expiration Warnings & Auto-Renewal

tas.sessionExpiration.notifyBeforeExpiration

This setting controls how long before session expiration a warning message appears. The recommended value is 15 minutes (900 seconds).

Users receive a notification 15 minutes before expiration.
Clicking "Continue Working" extends the session by the value of cache.accessTokenExpireDuration.
If the user does not respond in time, they will be logged out and must log in again.

tas.sessionExpiration.refreshBeforeExpiration

This setting defines when the access token is automatically refreshed if the user is active in TAS.

The refresh happens when a user performs an action that interacts with the backend.
The default value is -1, meaning auto-refresh is disabled.
If enabled, active users never see session expiration warnings.
If inactive (e.g., away for lunch), users will receive a warning or be logged out.

This setting helps balance security and usability. Organizations can adjust it to enforce stricter or more flexible session policies.

Safe Testing Durations

Beware, if I want to test on small times, the safe values when you don't "lock" TAs under your hands are 120s access token (cache.accessTokenExpireDuration) and 60s for notification (tas.sessionExpiration.notifyBeforeExpiration). This is a bearable time to test the functionality and enough time to make any changes. With lower times, you can get into a vicious cycle where only modifying a parameter via the database will help.

Updated 7 months ago by Anna Gernát

Token Expiration Settings

Session Expiration Warnings & Auto-Renewal

Safe Testing Durations

Logs

Contact