Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Users have to login multiple times a day #11436

Open
tograss opened this issue Sep 19, 2024 · 4 comments · May be fixed by #11913
Open

Users have to login multiple times a day #11436

tograss opened this issue Sep 19, 2024 · 4 comments · May be fixed by #11913
Labels
bug Something isn't working

Comments

@tograss
Copy link
Contributor

tograss commented Sep 19, 2024

Describe the bug
Some users report that they have to enter there login credentials multiple times a day. I can confirm via the logs the users indeed login multiple times a day with the same browser

To Reproduce
Unfortunately I don't really know what leads to this.
I have set a custom Session duration in the user default-authentication-login (24 hours).
I noticed before accessing the authentik site the access cookie shows the right end time, after visiting the authentik site it changes to 0

Expected behavior
A user should only have to enter there credential once a day.

Version and Deployment (please complete the following information):

  • authentik version: 2024.6.2

Additional context
It might started with the upgrade from 2024.6.1 to 2024.6.2 .
@tograss tograss added the bug Something isn't working label Sep 19, 2024
@quixful
Copy link

quixful commented Sep 29, 2024

experiencing this too on 2024.8.2

@tograss
Copy link
Contributor Author

tograss commented Oct 23, 2024
edited
Loading

Maybe #11713 is the same issue ? So it seems to happen on a fresh install also.

@tograss
Copy link
Contributor Author

tograss commented Oct 23, 2024

I tried switching the session backend from redis to db but the problem persists.
It seems to be user specific some users always get this, others never. What is really strange is that there is a time component involved. If the user tries accessing authentik directly in a new tab it works fine. Wait around 2 hours and the session is gone.
When trying after two hours I can observe the session cookie being send, but authentik does redirect to the login flow.
I'm unable to reproduce this with my own account or in a dev environment. So it is really hard to debug. Any ideas are welcome :-)

@tograss tograss linked a pull request Nov 4, 2024 that will close this issue
Open
6 tasks
@tograss
Copy link
Contributor Author

tograss commented Nov 4, 2024

For completeness, the steps to reproduce this behavior:

  • Run an ldap sync
  • change user pw in ldap
  • login to authentik
  • run ldap sync
  • user session is correctly ended
  • login to authentik
  • run ldap sync again
  • user session still ended

@tograss tograss mentioned this issue Nov 13, 2024
Open
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
bug Something isn't working
Projects
None yet
Milestone
No milestone
2 participants
@tograss @quixful