auth/backends: Adjust TTL for cached OIDC userinfo

No need to substract 1 from computed TTLs as it can lead to cache userinfo with a 0 seconds TTL when access token is about to expire and thus send multiple userinfo requests to the OIDC server on successive calls to the Web API.

auth/backends: Adjust TTL for cached OIDC userinfo
1a700011 · Antoine Lambert · 82282422 · 1a700011
Commit 1a700011 authored 5 years ago by Antoine Lambert
--- a/swh/web/auth/backends.py
+++ b/swh/web/auth/backends.py
@@ -152,8 +152,8 @@ class OIDCBearerTokenAuthentication(BaseAuthentication):
                # create Django user
                user = _oidc_user_from_info(userinfo)
                # cache userinfo until token expires
-                max_ttl = decoded['exp'] - decoded['auth_time'] - 1
-                ttl = decoded['exp'] - int(timezone.now().timestamp()) - 1
+                max_ttl = decoded['exp'] - decoded['auth_time']
+                ttl = decoded['exp'] - int(timezone.now().timestamp())
                ttl = max(0, min(ttl, max_ttl))
                cache.set(decoded['sub'], userinfo, timeout=ttl)