p19tp (p19tp) asked a question.
Reauthentication after reboot despite a valid refresh token
I have a Single Page Application (SPA) using Vue 2, and I'm using okta-vue 3.1 and okta-auth-js 4.9.2.
When I authenticate, I can see the background token refresh happening. As long as the computer is on, I don't need to re-authenticate. However, when I shut down the computer and restart it after the access token has expired, I have to re-authenticate, even though I have a refresh token with a 30-day validity period.
Is there a solution? Is there something specific I need to do to prevent this?
Thank you.
Hello @p19tp (p19tp) Thank you for reacting out to our Community!
This could be an issue with the browser, where the the cookies are reset/deleted upon closure.
I would recommend to review the sign on policy's as well:
https://help.okta.com/oie/en-us/content/topics/identity-engine/policies/about-policies.htm
Please see a similar discussion on this matter here:
https://devforum.okta.com/t/unlimited-refresh-token-site-never-auto-logs-out/22771/2
Community members help others by clicking Like or Select as Best on responses. Try it today.
What you missed: new product releases and other announcements
Thank you for your answer. It seems like this is a different issue. My concern is, on reboot, if the access token is expired, and the refresh token is still valid, I have to re-authenticate. The access token and refresh token are in the localStorage.
By the way I can see some Okta session cookies.
Thanks
I wasn't able to find more on this matter, I would recommend to leverage the Okta Developer forums for this type of questions and take advantage of their expertise.
https://devforum.okta.com/