Open Closed

Infinite token refresh cycle for a deactivated user #5504


User avatar
0
pavel.maskevich created
  • ABP Framework version: v7.2.3
  • UI Type: Angular / MVC
  • Database System: EF Core (SQL Server)
  • Tiered (for MVC) or Auth Server Separated (for Angular): no - separated
  • Exception message and full stack trace:
  • Steps to reproduce the issue: run angular + .net default template -> login with admin account -> deactivate yourself -> clear local storage -> refresh page

as a workaround to break this endless loop by doing the following: open an extra tab in your browser -> navigate to the authentication server app -> click the logout button.


4 Answer(s)
  • User Avatar
    0
    masum.ulu created
    Support Team Angular Expert

    Hello,

    Why you clear local storage manuel instead using logout button ? Yet I'll open an issue about the "what's gonna happend after deactive yourself".

    If you use logout button, there won't be any problem in case

  • User Avatar
    0
    masum.ulu created
    Support Team Angular Expert

    Also I've created an issue for the prevent de-active yourself you can check Issue

  • User Avatar
    0
    pavel.maskevich created

    Hello,

    I clear the local storage, that allow as to check what happens if the token expires (including for a deactivated user)

  • User Avatar
    0
    masum.ulu created
    Support Team Angular Expert

    Hello,

    I clear the local storage, that allow as to check what happens if the token expires (including for a deactivated user)

    Normally if token expires, it'll logout or uses refresh_token

Made with ❤️ on ABP v9.1.0-preview. Updated on December 10, 2024, 06:38