Logged out after the cookie `auth0.is.authenticated` expires

luisfelipe · July 9, 2020, 8:35am

Hi. Sorry if this is a duplicated issue, if so please point me to the original one.

We are using auth0-spa-js to authenticate users.

Every time a user logs in, the cookie auth0.is.authenticated is set to true with 1 day until expire. Then, when the user refreshes the page or return to the website, the lib checks the presence of this cookie before perform a getTokenSilently.

After the cookie expires, the lib does not call the getTokenSilently again, even though there’s a chance of the in-memory token still be valid (according to our API settings on Auth0).

Here is my question: Does the auth0-spa-js lib should be capable to recognise the user is logged in for a period longer than 1 day when there’s a valid token? If not, how can we keep the user logged in for a longer period?

brianz · May 4, 2021, 7:29pm

For future reference, I figured out that you can set the sessionCheckExpiryDays so that the cookie is set for the number of days that you provide.
https://auth0.github.io/auth0-spa-js/interfaces/auth0clientoptions.html#sessioncheckexpirydays

dan.woda · May 4, 2021, 10:09pm

Hi @brianz,

Welcome to the Community!

Thanks for providing a solution for this

luisfelipe · May 5, 2021, 8:24am

Thanks @brianz !

I proposed and implemented the sessionCheckExpiryDays, but I completely forgot to update this issue.

dan.woda · May 5, 2021, 3:35pm

@luisfelipe glad you got a solution working, regardless!

system · May 20, 2021, 3:36pm

This topic was automatically closed 15 days after the last reply. New replies are no longer allowed.