web icon indicating copy to clipboard operation
web copied to clipboard
verified publisher icon owncloud

Multiple browser tabs send different refresh_token request with OpenID Connect at same interval

Open inferno-umar opened this issue 1 year ago • 2 comments

Steps to reproduce

  1. Use oCIS with openid connect with less refresh_token interval
  2. Open multiple oCIS tabs considering they share same browser's LocalStorage
  3. Inspect the requests in all these tabs for refresh_token

It is observed that a token response in 1 tab requests for refresh_token in another tab before the access_token expires at the same interval.

There must be token inspection & mutex used I guess while refresh_token request is sent!

inferno-umar avatar May 24 '24 05:05 inferno-umar

Transferring to web ...

rhafer avatar May 24 '24 07:05 rhafer

Seems to be an issue in the oidc-client-ts lib, see https://github.com/authts/oidc-client-ts/issues/430.

JammingBen avatar May 31 '24 06:05 JammingBen