Angular-auth-oidc-client: How to prevent full page reload and replay of ngrx actions on silent renew?
I have a working app with automaticSilentRenew turned on. Everything works fine except that when the silent renew cycle completes, the current page is reloaded as well as all of the ngrx actions that had been fired since the page was first loaded. This poses a dangerous problem for me since some post'd actions are being silently triggered by this process.
I can post screenshots and some code snippets if needed.
Is this behavior intentional? If not, what do you suggest I can do to remedy this situation?
Thanks
daudihusbands
All 3 comments
Hey, take a look at this example https://github.com/FabianGosebrink/angular-oauth2-oidc-sample/tree/master/client/angular-oidc-oauth2-ngrx and https://offering.solutions/blog/articles/2020/05/29/authentication-in-angular-with-ngrx-and-asp.net-core/ blog here. There is a working ngrx example.
FabianGosebrink
on 3 Jun 2020
@FabianGosebrink Thank you for this repo and tutorial. I got it working but I'm not sure that the silentRenew is actually working.
I tried to configure my local IdSrv client with short token lifetimes to test it but I can't seem to get it to renew the token.
"AccessTokenLifetime": 120,
"IdentityTokenLifetime": 90,
If I reload the page after a signin and wait for the token expiration (about 2 mins), I am forced to clear the application cache and login again.
Thanks for your help
daudihusbands
on 4 Jun 2020
@FabianGosebrink It's working now. Turns out I didn't configure the silentRenewUrl and set up CSP according to the docs.
Thanks again for your help
daudihusbands
on 4 Jun 2020
Related issues
cgatian
路
4Comments
revok
路
4Comments
profet23
路
3Comments
haidelber
路
3Comments
Jonesie
路
4Comments
Most helpful comment
@FabianGosebrink It's working now. Turns out I didn't configure the silentRenewUrl and set up CSP according to the docs.
Thanks again for your help