docs
docs copied to clipboard
suitenumerique
Prototype silent authentication
This contribution is totally draft, and waiting for peer-programming with @AntoLC . Requested by @virgile-dev, I propose a prototype of the silent login authentication implemented in La Suite Django package.
Nice thank you @lebaudantoine ! @AntoLC this is a huge win for users, let's get to it when you or @lunika get a bit of bandwith
current UX (insufficient RAM on my computer are negatively impacting the current UX.)
https://github.com/user-attachments/assets/b7aacc39-e472-4fcb-8c65-830d6548bca1
While reducing the number of requests to the /me endpoint, I discovered a race condition. React Query is designed to execute a single /me query, from my understanding, but there's a race condition occurring between the Auth component and the Language Picker component, which triggers two simultaneous requests.
We should add a configuration, I propose IS_SILENT_LOGIN_ENABLED. People self-hosting docs could enable the silent login, if their OIDC provider supports the prompt parameter.
To avoid spamming the user with too many redirections, in my code, the default retry silent login is every hour.
current UX (insufficient RAM on my computer are negatively impacting the current UX.) wip.mov
Hey @lebaudantoine thanks for the video. Ideally if a user is loggued in he should see his documents and not the landing page. Is that something we can acheive with the right callback maybe ?
@virgile-dev I've not modified this behavior, it should be still functional. In the video, I'm logged out. The video illustrates that silent login is tried once per 1hour
I close it, I added tags to find it easily again. Feel free to open it if you want to work on it again.
@AntoLC actually that's quite important and @lebaudantoine told be he wanted to finish it.
@lunika if you can help on this one it'd be great. it's a big win for users.
@lunika I don't think @lebaudantoine has time to finish this could you take it over ?