Initial Checklist
Bug Description
User gets logged out due to a failed attempt at token renewal. This can fail often due to prolonged network interruption (e.g. no internet / device woke up from standby mode)
Reproduction Steps
Environment -> OpenCloud compose with keycloak enabled
- To easily simulate for testing a prolonged downtime exceeding the access token lifespan (default of 5 minutes), we reduce
accessTokenLifespan to an extremely low value of 3 seconds (Keycloak Admin -> OC realm -> Realm settings -> Tokens -> Access Token Lifespan).
- Stay logged in the web UI
- Start observing UI behaviour
- Turn WiFi off / Put device to standby mode (simulate >3s downtime)
- Turn WiFi back on / wake deviece (do not take too long to turn it back on though, it needs to be before
ssoSessionIdleTimeout which defaults to 30 minutes)
- Observe UI behaviour
Expected Outcome
Ideally resume UI state as observed from step 3 (silent signin), or at least redirected to IDP/keycloak sign in. User could already be authenticated in the IDP
Actual Outcome
User is forced to be logged out because of the silent signin failure, affecting UX and possibly discarding their progress
Initial Checklist
Bug Description
User gets logged out due to a failed attempt at token renewal. This can fail often due to prolonged network interruption (e.g. no internet / device woke up from standby mode)
Reproduction Steps
Environment -> OpenCloud compose with keycloak enabled
accessTokenLifespanto an extremely low value of 3 seconds (Keycloak Admin -> OC realm -> Realm settings -> Tokens -> Access Token Lifespan).ssoSessionIdleTimeoutwhich defaults to 30 minutes)Expected Outcome
Ideally resume UI state as observed from step 3 (silent signin), or at least redirected to IDP/keycloak sign in. User could already be authenticated in the IDP
Actual Outcome
User is forced to be logged out because of the silent signin failure, affecting UX and possibly discarding their progress