@justmara, I solved this issue by overriding UpdateRefreshTokenAsync method from DefaultRefreshTokenService. GetLifetimeInSeconds() extension method marked as internal, so just create your own extension.

public class RefreshTokenService : DefaultRefreshTokenService
{
    private readonly ILogger logger;

    /// <summary>
    /// Initializes a new instance of the <see cref="RefreshTokenService"/> class.
    /// </summary>
    /// <param name="refreshTokenStore">The refresh token store</param>
    /// <param name="logger">The logger</param>
    public RefreshTokenService(
        IRefreshTokenStore refreshTokenStore,
        ILogger<DefaultRefreshTokenService> logger
    ) : base(refreshTokenStore, logger)
    {
        this.logger = logger;
    }

    /// <summary>
    /// Updates the refresh token.
    /// </summary>
    /// <param name="handle">The handle.</param>
    /// <param name="refreshToken">The refresh token.</param>
    /// <param name="client">The client.</param>
    /// <returns>
    /// The refresh token handle
    /// </returns>
    public override async Task<string> UpdateRefreshTokenAsync(string handle, RefreshToken refreshToken, Client client)
    {
        logger.LogDebug("Updating refresh token");

        bool needsCreate = false;
        bool needsUpdate = false;

        if (client.RefreshTokenUsage == TokenUsage.OneTimeOnly)
        {
            logger.LogDebug("Token usage is one-time only. Generating new handle");

            // delete old one
            await RefreshTokenStore.RemoveRefreshTokenAsync(handle);

            // create new one
            needsCreate = true;
        }

        if (client.RefreshTokenExpiration == TokenExpiration.Sliding)
        {
            logger.LogDebug("Refresh token expiration is sliding - extending lifetime");

            // if absolute exp > 0, make sure we don't exceed absolute exp
            // if absolute exp = 0, allow indefinite slide
            int currentLifetime = refreshToken.CreationTime.GetLifetimeInSeconds();
            logger.LogDebug("Current lifetime: " + currentLifetime);

            int newLifetime = currentLifetime + client.SlidingRefreshTokenLifetime;
            logger.LogDebug("New lifetime: " + newLifetime);

            // zero absolute refresh token lifetime represents unbounded absolute lifetime
            // if absolute lifetime > 0, cap at absolute lifetime
            if (client.AbsoluteRefreshTokenLifetime > 0 && newLifetime > client.AbsoluteRefreshTokenLifetime)
            {
                newLifetime = client.AbsoluteRefreshTokenLifetime;
                logger.LogDebug("New lifetime exceeds absolute lifetime, capping it to " + newLifetime);
            }

            refreshToken.Lifetime = newLifetime;
            needsUpdate = true;
        }

        if (needsCreate)
        {
            handle = await RefreshTokenStore.StoreRefreshTokenAsync(refreshToken);
            logger.LogDebug("Created refresh token in store");
        }
        else if (needsUpdate)
        {
            await RefreshTokenStore.UpdateRefreshTokenAsync(handle, refreshToken);
            logger.LogDebug("Updated refresh token in store");
        }
        else
        {
            logger.LogDebug("No updates to refresh token done");
        }

        return handle;
    }
}

I don't see us adding this back to the 1.x branch. I'd suggest doing what @Iamcerba suggested.

@brockallen surely I can avoid this misbehavior the way @Iamcerba suggested. BUT 1.5.2 still IS the actual version for aspnet core 1.x and IdentityServer4. And it works not like documentation says. So looks like this is what can surely be called _a bug_.
So you can add remark to documentation saying "_infinite AbsoluteLifeTime can be set only in 2.x package version_" or you can merge this bugfix to 1.5.2 so both versions match the documentation.

Something wrong with the docs?

http://docs.identityserver.io/en/aspnetcore1/topics/refresh_tokens.html

@leastprivilege ohshi... there is version selector! ok then, it looks legit now :) I'll close this issue/pr

AMAZING!!! I also fell in the same trap :(

I am seeing a similar issue in IdentityServer 2.2 with ASP.NET CORE 2.1.2
https://stackoverflow.com/questions/51684095/how-do-i-stop-identityserver4-refresh-tokens-expiring

Just fell as well for this, in an app running ASP.NET Core 1.1 / IdentityServer 1.5.0. Just to confirm: the workaround is to override UpdateRefreshTokenAsync and just register that in my app services.AddTransient<IRefreshTokenService, MyFixedRefreshTokenService>();?

Also: Since others already feel for this (and probably more will), maybe pointing this fact on the latest docs would prevent people from expecting that this works when it doesn't? I know there's a version selector on the docs but it's easy to forget about it.

This thread has been automatically locked since there has not been any recent activity after it was closed. Please open a new issue for related bugs.