[keycloak-user] User roles deleted after SSO idle session expires

Hi, This is our Keycloak setup: - Keycloak docker container 4.4.0.Final - Azure Active Directory (mapping groups to roles) - Keycloak client protocol: openid-connect - 3 optional client scopes We noticed lately that users using the front-end application (angular) are losing all roles after the SSO idle session expires. This behaviour is also seen in the 4.8.3.Final version. It seems that the Identity Provider Mappers are not triggered for some reason and I can't dig any deeper nothing much is logged in the method IdentityBrokerService.authenticated(BrokeredIdentityContext context). Any ideas? How can I run Keycloak form source?