Reputation: 81
silent renew in oidc-client-js does not work
I am using oidc-client-js library to work with IdentityServer3, it works perfect but I cannot set up automatic “silent token renew” each time when oidc-client-js tries to renew token I get error in console
Refused to display 'https://identity.blablabla.com/core/connect/authorize?client_id=...' in a frame because it set 'X-Frame-Options' to 'sameorigin'.
I used for test angular2 application from oidc github, there is screenshot of error in that moment when application tried renew token enter image description here
I understand that it is part of security of identity server to prevent open its pages in iframe, but in this case oidc-client-js cannot make silent token renew with IdentityServer3. Probably someone had experience with this problem and can help to solve it?
Upvotes: 2
Views: 11547
Answers (1)
Reputation: 81
Problem was solved by putting silentRenewUrl to identity server configuration. There is the solution
Upvotes: 6
Related Questions
- No state in response after callback in oidc-client-js
- Silent refresh not working with OIDC-client in Angular 5
- Identity Server 4 Silent Renew ErrorResponse: login_required
- Silent refresh is not working in angular oauth oidc
- automaticSilentRenew not working for angular oidc-client library
- Silent Refresh Still Works After AccessToken Expiry
- Oidc client js: silent access token renew breaks because identity server authentication cookie sliding expiration doesn't work
- Silent Renew using oidc-client in case SameSite=Lax
- Angular + OIDC Implicit Flow Silent Renew
- oidc-client with IdentityServer3 - Angular2 SPA, how to refresh data access token