Summarize the issue
If the user's current session expires in the app while they're actively using it, the prompt to re-authenticate will take them back to the OIDC provider. The provider may return the same authorization JWT as before with an expiration time in the past. As such, the session's new expiration time will have already passed, and the user will be stuck in a loop of authenticating again.
The only way to resolve this issue is to clear the app's cache and cookies.
Expected behavior
The user should not be prompted to re-authenticate more than once.
Steps to reproduce
- Sign into the app using SSO. Make sure a low valid time is set in the OIDC provider (Authentik).
- Wait for the token to expire. If not automatically prompted to re-authenticate, navigate around the interface to trigger the popup.
- Try re-authenticating with SSO.
Possible solutions
No response
Summarize the issue
If the user's current session expires in the app while they're actively using it, the prompt to re-authenticate will take them back to the OIDC provider. The provider may return the same authorization JWT as before with an expiration time in the past. As such, the session's new expiration time will have already passed, and the user will be stuck in a loop of authenticating again.
The only way to resolve this issue is to clear the app's cache and cookies.
Expected behavior
The user should not be prompted to re-authenticate more than once.
Steps to reproduce
Possible solutions
No response