Uploaded image for project: 'Keycloak'
  1. Keycloak
  2. KEYCLOAK-18718

Sessions not removed when Client Session Idle and Max is set

    XMLWordPrintable

    Details

    • Type: Bug
    • Status: Open (View Workflow)
    • Priority: Major
    • Resolution: Unresolved
    • Affects Version/s: 11.0.3, 12.0.4, 14.0.0
    • Fix Version/s: 16.0.0
    • Component/s: Core
    • Labels:
      None
    • Steps to Reproduce:
      Hide

      Create new client with these token values for that client
      Get the new token. Wait fe. 5 minutes, session is still there in the sessions tab of a client and it is not suppose to be. Only way to fix it is to logout session manually.

      Show
      Create new client with these token values for that client Get the new token. Wait fe. 5 minutes, session is still there in the sessions tab of a client and it is not suppose to be. Only way to fix it is to logout session manually.
    • Docs QE Status:
      NEW
    • QE Status:
      NEW

      Description

      Sessions not removed when Client Session Idle and Max is set. You can get negative values for access token liveness time because exp is static which means exp will actually be negative. When Client Session Idle/Max is not set, Keycloak will use realm settings of SSO Session Idle /Max and token/session will behave like it suppose to. When only  Client Session Idle or Client Session Max is used and other option is used from realm settings, again everything will work correctly.

      There is no set settings for offline_access so I assume it is not the linked bug, but is very similar to that. 
       https://issues.redhat.com/browse/KEYCLOAK-15740

        Attachments

          Activity

            People

            Assignee:
            Unassigned Unassigned
            Reporter:
            kostovic Kresimir Ostovic
            Votes:
            1 Vote for this issue
            Watchers:
            6 Start watching this issue

              Dates

              Created:
              Updated: