public void validateToken(Token token, OAuthDataProvider provider) throws OAuthProblemException { if (token == null) { throw new OAuthProblemException(OAuth.Problems.TOKEN_REJECTED); } Long issuedAt = token.getIssuedAt(); Long lifetime = token.getLifetime(); if (lifetime != -1 && (issuedAt + lifetime < (System.currentTimeMillis() / 1000))) { provider.removeToken(token); throw new OAuthProblemException(OAuth.Problems.TOKEN_EXPIRED); } } }