Diffusion Common authentication libraries 508b476db7c5

django/backends: Handle error when user session is no longer active
508b476db7c5
Actions

Tags

None

Subscribers

None

Description

django/backends: Handle error when user session is no longer active

When a user session has been terminated without using the logout view
(for instance a user can logout from all its authenticated sessions
using the Keycloak account UI), the expired OIDC profile is still
in webapp cache which causes errors and prevent new user logins.

So ensure to remove expired profile from cache when detecting Keycloak
session is no longer active in django authentication backend.

Related to T3496

Details

Provenance

anlambert	Authored on Aug 23 2021, 3:09 PM
anlambert	Pushed on Aug 23 2021, 5:16 PM

Differential Revision

D6122: django/backends: Handle error when user session is no longer active

Parents

rDAUTH2da72f399b4d: cli: Add commands to generate and revoke bearer tokens

Branches

Unknown

Tags

Unknown

References

Tasks

T3496: Handle webapp authentication error when session is no longer active

Build Status

Buildable 23107
Build 36038: test-and-build	Jenkins console · Jenkins

Event Timeline

anlambert committed rDAUTH508b476db7c5: django/backends: Handle error when user session is no longer active (authored by anlambert).Aug 23 2021, 3:10 PM

anlambert added a task: T3496: Handle webapp authentication error when session is no longer active.Aug 23 2021, 5:16 PM

anlambert added an edge: D6122: django/backends: Handle error when user session is no longer active.

Harbormaster completed building B23107: rDAUTH508b476db7c5: django/backends: Handle error when user session is no longer active.Aug 23 2021, 5:18 PM

Changes (2)

Path

Size

swh/

auth/

django/

tests/

django/

test_backends.py

rDAUTH508b476db7c5

swh/auth/django/backends.py

Loading...

swh/auth/tests/django/test_backends.py

Loading...