reflector/www/app/lib/SessionProvider.tsx at 0663700a615a4af69a03c96c410f049e23ec9443 - reflector - Gitea: Git with a cup of tea

selfhostyourtech/reflector

mirror of https://github.com/Monadical-SAS/reflector.git synced 2025-12-20 12:19:06 +00:00

Files

Mathieu Virbel 833a5d1191 fix: sso refresh token race condition (#405 )

With NextAuth, there is a race condition of the current implementation
of refreshToken using multiple tab. Because getSession() is broadcasted
(or triggered by another component, window focus or such), we may ask
for the jwt() to be refreshed at the same time.

The problem is the first time will go correctly, while all others calls
will be rejected as they are using a revoked token.

This redis lock is per-user, and will use redis lock as a source of
truth.

2024-09-05 00:47:02 +02:00

12 lines

345 B

TypeScript

Raw Blame History

 "use client";
 import { SessionProvider as SessionProviderNextAuth } from "next-auth/react";
 import { SessionAutoRefresh } from "./SessionAutoRefresh";
 export default function SessionProvider({ children }) {
   return (
     <SessionProviderNextAuth>
       <SessionAutoRefresh>{children}</SessionAutoRefresh>
     </SessionProviderNextAuth>
   );
 }