Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

OIDC: Refresh token #25444

Closed
4 of 5 tasks
andybalaam opened this issue May 25, 2023 · 1 comment
Closed
4 of 5 tasks

OIDC: Refresh token #25444

andybalaam opened this issue May 25, 2023 · 1 comment
Assignees
@kerryarchibald
Labels
A-Authentication A-Login A-OIDC T-Enhancement

Comments

@andybalaam
Copy link
Contributor

andybalaam commented May 25, 2023
edited by kerryarchibald
Loading

When logged in using OIDC, our access token will expire very often (possibly every 5 minutes).

So, we should detect when that has happened and:

  • refresh the access token using the refresh token
  • retry the request

This should be invisible to the user unless either of those steps fails.

We think/hope there is a single place in the code where all authenticated requests go through, so hopefully these changes can focus in that area.

Refer to https://areweoidcyet.com/client-implementation-guide/ for more info.

Tasks
Beta Give feedback
  1. OIDC: Store the refresh token #25708
    A-Authentication A-Login A-OIDC T-Enhancement
    kerryarchibald
  2. OIDC: Make issuer metadata available somewhere vector-im/element-web#25749
    A-Authentication A-OIDC T-Task
  4. OIDC: Attempt to refresh expired tokens #25839
    A-Authentication A-OIDC T-Enhancement
@weeman1337 weeman1337 added the X-Needs-Info This issue is blocked awaiting information from the reporter label May 31, 2023
@weeman1337
Copy link
Contributor

@andybalaam can you triage this issue? I don't really know what to do with it.

@andybalaam andybalaam added T-Enhancement A-Login and removed X-Needs-Info This issue is blocked awaiting information from the reporter labels Jun 5, 2023
@kerryarchibald kerryarchibald mentioned this issue Jul 12, 2023
Merged
3 tasks
@kerryarchibald kerryarchibald self-assigned this Oct 3, 2023
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@kerryarchibald kerryarchibald

Labels
A-Authentication A-Login A-OIDC T-Enhancement
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
3 participants
@andybalaam @kerryarchibald @weeman1337