Skip to content

auth: Add OIDC session silent refresh middleware

When a user has logged in to swh-web from a browser and the access token has expired, try to perform a silent OIDC session refresh through the use of a Django middleware.

If the OIDC session has expired (idle time reached for instance), a redirection to the logout page will be performed to inform the user and a link to login again will be offered.

Related to #2267 (closed)


Migrated from D2877 (view on Phabricator)

Merge request reports