auth: Add OIDC session silent refresh middleware (!272) · Merge requests · Platform / Development / swh-web

Antoine Lambert requested to merge generated-differential-D2877-source into generated-differential-D2877-target Mar 25, 2020

When a user has logged in to swh-web from a browser and the access token has expired, try to perform a silent OIDC session refresh through the use of a Django middleware.

If the OIDC session has expired (idle time reached for instance), a redirection to the logout page will be performed to inform the user and a link to login again will be offered.

Related to #2267 (closed)

Migrated from D2877 (view on Phabricator)

auth: Add OIDC session silent refresh middleware

Merge request reports