Java SE (Java Platform, Standard Edition)

Announcement

For appeals, questions and feedback about Oracle Forums, please email oracle-forums-moderators_us@oracle.com. Technical questions should be asked in the appropriate category. Thank you!

Suggestion about handling an OAuth refresh token from a JavaFX app?

912332Dec 12 2012 — edited Dec 17 2012

I'm working on a browser-embedded JavaFX application and I'd like to OAuth to authenticate with some web service. The web service provides an Access Token and a Refresh Token.

The challenge I'm facing is that the application needs to securely store the Refresh Token someplace so that once the Access Token expires, you can generate a new one. (The Access Token doesn't need to be stored anywhere -- it's only used while the application is running, and thus stays in RAM and nowhere else.)

It seems like iOS and Android have some sort of keystore objects for developers to store this kind of information, but I'm not seeing the same thing for Windows and Mac.

Has anyone faced this situation before? Any suggestions on how to securely store the Refresh Token are appreciated.

~~ Michael

Locked Post

New comments cannot be posted to this locked post.

Locked on Jan 14 2013

Added on Dec 12 2012

#javafx-2-0-and-later

2 comments

370 views