The current OIDC user session state could also be checked and silently renewed in the Django backend.
This could be implemented through a Django middleware.
This approach seems simpler than doing it in the fronted (T2248). Let's try to evaluate both solutions.
| rDWAPPS Web applications | |||
| D2877 | rDWAPPS05e9efac023a auth: Add OIDC session silent refresh middleware | ||
| Status | Assigned | Task | ||
|---|---|---|---|---|
| Migrated | gitlab-migration | T3082 Improve Save Code Now handling | ||
| Migrated | gitlab-migration | T1226 Save code now email notification for submitter | ||
| Migrated | gitlab-migration | T2217 Plumbings | ||
| Migrated | gitlab-migration | T2219 Authentication / authorization | ||
| Migrated | gitlab-migration | T1982 Add user authentication and permissions to swh-web | ||
| Migrated | gitlab-migration | T2048 Use OpenID Connect to authenticate and authorize users in Django | ||
| Migrated | gitlab-migration | T2267 Check OIDC user session state in backend |