You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
{{ message }}
This repository has been archived by the owner on Jun 26, 2021. It is now read-only.
Description:
If a user is logged in, but the idToken is expired, then they navigate to a page with requireADLogin, 2 refresh operations are issued: one in an iFrame and another via a main page redirect.
in $locationChangeStart, if the location is not a callback, it updates the auth cache. If the idToken is expired, getCachedToken will return null. This causes the else clause in the event to trigger. when acquireToken is called, the idToken will start being refreshed via an iFrame.
Then the $routeChangeStart event triggers. At this point, authData.isAuthenticated is false due to the cache refresh in locationChangeStart. If the page they are navigating to has requireADLogin, it will call adal.login(), trying to log the user in on the main page as well.
I believe if an iFrame refresh is happening, the main page should not redirect.
Changing this:
if (!_oauthData.isAuthenticated) {
To:
if (!_oauthData.isAuthenticated && !_adal._renewActive) {
in the routeChangeHandler in adal-angular.js should resolve this issue.
The text was updated successfully, but these errors were encountered:
Description:
If a user is logged in, but the idToken is expired, then they navigate to a page with requireADLogin, 2 refresh operations are issued: one in an iFrame and another via a main page redirect.
in $locationChangeStart, if the location is not a callback, it updates the auth cache. If the idToken is expired, getCachedToken will return null. This causes the else clause in the event to trigger. when acquireToken is called, the idToken will start being refreshed via an iFrame.
Then the $routeChangeStart event triggers. At this point, authData.isAuthenticated is false due to the cache refresh in locationChangeStart. If the page they are navigating to has requireADLogin, it will call adal.login(), trying to log the user in on the main page as well.
I believe if an iFrame refresh is happening, the main page should not redirect.
Changing this:
if (!_oauthData.isAuthenticated) {
To:
if (!_oauthData.isAuthenticated && !_adal._renewActive) {
in the routeChangeHandler in adal-angular.js should resolve this issue.
The text was updated successfully, but these errors were encountered: