Skip to content

[Feature Request]: I would like to silence the "When using silent renew and refresh tokens please set the offline_access scope" message #2100

Description

@ThorstenKunz

Is your feature request related to a problem? Please describe.
We have been using the offline_access scope for quite some time now together with Keycloak as IDP. However with version 26.1.0 Keycloak introduced a new way of handling refresh tokens when scope offline_access is requested: https://www.keycloak.org/docs/latest/upgrading/index.html#offline-access-removes-the-associated-online-session-if-the-offline_scope-is-requested-in-the-initial-exchange
This pretty much kills SSO in the current setup because when a user opens a second tab they are forced to login again instead of transparently getting logged in.
If we remove the offline_access everything seems to work again but there is this warning log being issues into console that I really would like to get rid off.
Apparently offline_access is not a requirement to get refresh tokens and seems to be a perfectly fine scenario so please provide some way to silence the warning.

Describe the solution you'd like
Some configuration value that silences the warning when refresh tokens are being used without offline_access.

Describe alternatives you've considered
Using iframe silent renew without refresh tokens is impractical.

Thanks,
Thorsten

Metadata

Metadata

Assignees

No one assigned

    Labels

    No labels
    No labels

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions