token_expires event not raised when mobile device is in deep throttle mode, which makes the refresh functionality fail #1149
Labels
bug
For tagging faulty or unexpected behavior.
Comments
|
I have worked on this problem for some time now. I implemented the refresh timer using web workers (https://www.npmjs.com/package/worker-timers), but sadly that did not resolve the situation. |
|
It is still a work in progress, but I forked the repo and added some possible fix in this branch: https://github.com/marty30/angular-oauth2-oidc/tree/1149_refresh_token_after_unlocking_device |
|
I have been bothered by this one as well, a fix would be nice 👍 |
|
+1 we have the same issue |
|
Thanks @marty30 for this. So your solution is to do an additional check when the window gets the focus, right? |
|
That is correct. Just an additional check on focus. I hope that my PR is still mergable. |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Describe the bug
When a mobile device is locked, the token_expires event is not raised. This causes the access token to expire without triggering a refresh to the OAuth server.
Stackblitz example
The sample app in itself will show the problematic behavior if you open the sample app on a phone where the device is locked. Note however that the refresh request fails instead of timing out. Once the refresh request fails once, the application just stops automatically refreshing (is this intentional, no retries if the user did not have an internet connection while the refresh triggers?)
To Reproduce
Steps to reproduce the behavior:
Expected behavior
The access token to be refreshed after 75% of its lifetime
Environment:
Additional context
We think that the setInterval timer, that is used by rxjs's delay function, is silently cancelled or paused by Chrome while the phone is locked. It seems to have to do with https://developer.chrome.com/blog/timer-throttling-in-chrome-88/.
The text was updated successfully, but these errors were encountered: