[keycloak-user] User has to login twice after Session expiration
Dominik Schopper
Dominik.Schopper at cofinpro.de
Thu Jun 6 11:02:49 EDT 2019
Hello,
we have a Keycloak 4.8.0.Final
Our Angular Frontends have e.g. a 10min idle session timeout
When a user logs in (login 1) and the session idles out and the user clicks, he/she gets redirected to the keycloak login page and posts the credentials (login 2)
After giving the correct credentials the user gets redirected to the login page again and has to enter the credentials again before being redirected back to the application
The http headers for the “login 1” and “login 3” response from the server contain
set-cookie: KC_RESTART=; Version=1; …; HttpOnly
set-cookie: KEYCLOAK_IDENTITY= … Version=1; Path=/auth/realms/sparda-n/; HttpOnly
set-cookie: KEYCLOAK_SESSION=… Version=1; Expires=Thu, 06-Jun-2019 11:39:31 GMT; Max-Age=7200; Path=/auth/realms/sparda-n/
set-cookie: KEYCLOAK_REMEMBER_ME=; Version=1; Comment=Expiring cookie;…; HttpOnly
Whereas the second response does only contain
set-cookie: AUTH_SESSION_ID=…
Does anybody have advice on how to make the “login 2” work dierectly?
Thx
Dom
More information about the keycloak-user
mailing list