[FR] Remember login / silent sign-in with built-in IDP #1868
Description
Initial Checklist
- I understand this is a feature request and questions should be posted in the Community Discussions
- I searched issues and couldn’t find anything (or linked relevant results below)
Idea
Feature Request
When using OpenCloud Web with the built-in IDP, it would be very helpful if the Web UI could remember the login across browser restarts by performing a silent sign-in when a valid refresh token is available.
The scope offline_access is explicitly configured via the environment variable:
WEB_OIDC_SCOPE="openid profile email offline_access"A refresh token is correctly issued and stored in the browser.
Current Behavior
-
Refresh tokens are issued by the built-in IDP
-
Token refresh works while the browser session is alive (e.g. tab closed/reopened)
-
After closing and reopening the browser:
- No OIDC user is restored
- No silent sign-in is attempted
- The user is redirected to the login screen
Desired Behavior
If a valid refresh token exists:
- The Web UI should attempt a silent sign-in on application startup
- A new access token should be obtained using the refresh token
- The user should remain signed in across browser restarts
Environment
- OpenCloud Web
- Built-in IDP
offline_accessenabled viaWEB_OIDC_SCOPE- Tokens stored in browser storage
Summary
This feature would allow OpenCloud Web to remember authenticated users across browser restarts when using the built-in IDP.