Akhil Potukuchi
Akhil Potukuchi
@shreyasajj > I am not sure how to test the WebDav, could you give me some guidance on this? Actually we don't need to test either basic or bearer auth...
> Yes I did, I have this line in authelia @shreyasajj Do you confirm that a refresh token is returned in the response?
@Adphi Thanks for the tests and comments! Yes, I shall add debug logs and also handle exceptions correctly I also apply fixes according to your comment(s) and push asap. Again,...
> You don't need a configuration parameter to enable refresh tokens. Refresh tokens should be enabled if the requested scopes contain offline_access, see [the request parameters definition](https://openid.net/specs/openid-connect-basic-1_0.html#RequestParameters) and the [scope...
@pulsejet @Adphi Requesting you to look into this one :) I got a little busy in between and was unable to push it forward earlier but can resolve issues promptly...
> I don't know why an administrator would ask for offline_access if not to handle user sessions. > I agree that this should be an explicit setting, and defining offline_access...
@Adphi Makes sense. I will make changes accordingly and re-push.
@Adphi So here, we need a check to see if `oidc_login_scope` as set by the user contains `offline_access` and in that case refresh token usage has to happen? In the...
@Adphi Done, applied your suggestions. Please check if the code looks good to you. In the meantime, I am testing thoroughly on my test installation.
> Hi, which nc version? @szaimen 24.0.8