Skip to content
Latchkey

Token Expiry - CI/CD Glossary Definition

Token expiry is the time (the exp claim) after which a token is no longer valid, bounding how long a leaked or stale token can be used.

Short is safer

Short lifetimes limit exposure but need a refresh or re-issue mechanism. Verifiers must reject expired tokens and allow only small clock skew.

In CI/CD

OIDC-derived cloud credentials expire within an hour, so even a leaked build log token becomes useless quickly.

Related guides

Tired of flaky CI? Latchkey auto-heals failed jobs and retries them for you. Start free →