Skip to content

Support OAuth token refresh #3799

New issue
New issue
Closed as not planned
Closed as not planned
Support OAuth token refresh#3799
Labels
scope/backendstatus/acceptedAn issue which has passed triage and has been acceptedstatus/needs-attentionCollective discussion is requiredtype/enhancementEn enhancement to an already existing feature
@Haarolean

Description

@Haarolean
Haarolean
opened on May 10, 2023

Discussed in #3773

Originally posted by krumft May 4, 2023
Hello KafkaUI Team,

Thank you for the great tool!

We are deploying it in a setup that uses our corporate Okta tenant for authentication and authorisation. The type of integration we have configured on Okta level is an OIDC web app. Our tenant supports the refresh_token grant type, looking at the response from its .well-known/openid-configuration endpoint.

We have noticed that every couple of hours the application session expires, and the user is redirected to a brand new SSO login journey. Therefore I am opening this discussion to ask following questions:

  • In an OAuth setting how long does the user session last, and is that duration configurable?
  • (kind of similar question) How long does the OAuth access token last? Usually this is specified as a metadata of the token, and is controlled by the party that issues the token, so perhaps KafkaUI just respects that metadata?
  • Does KafkaUI support OAuth token refresh? Or every time the user session expires it requests a brand new access token?

Kind Regards,
Krum.

Metadata

Metadata

Assignees

No one assigned

    Labels

    scope/backendstatus/acceptedAn issue which has passed triage and has been acceptedstatus/needs-attentionCollective discussion is requiredtype/enhancementEn enhancement to an already existing feature

    Type

    No type

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions