C
Coder.com3d ago
Vijay Bandari

OKTA OIDC - Session timeout issue

Coder version: 2.24.2 CODER_OIDC_SCOPES="openid,profile,email,offline_access" I see this in logs when I first login & the session is timing out in an hour & logging off the users. I don't see any refresh token requests in logs, so not sure why coder is not refreshing the tokens. Any pointers would be helpful. 
2025-09-30 15:42:34.100 [debu]  coderd.userauth: got oidc claims  request_id=f231a2db-ae9f-4828-a0b1-d4cd69c42710  source=id_token  claim_fields="[amr at_hash aud auth_time email exp groups iat idp iss jti name preferred_username sub ver]"  blank=[]
2025-09-30 15:42:34.368 [debu]  coderd.userauth: got oidc claims  request_id=f231a2db-ae9f-4828-a0b1-d4cd69c42710  source=userinfo  claim_fields="[email email_verified family_name given_name groups locale middle_name name preferred_username sub updated_at zoneinfo]"  blank=[middle_name]
2025-09-30 15:42:34.100 [debu]  coderd.userauth: got oidc claims  request_id=f231a2db-ae9f-4828-a0b1-d4cd69c42710  source=id_token  claim_fields="[amr at_hash aud auth_time email exp groups iat idp iss jti name preferred_username sub ver]"  blank=[]
2025-09-30 15:42:34.368 [debu]  coderd.userauth: got oidc claims  request_id=f231a2db-ae9f-4828-a0b1-d4cd69c42710  source=userinfo  claim_fields="[email email_verified family_name given_name groups locale middle_name name preferred_username sub updated_at zoneinfo]"  blank=[middle_name]
4 Replies
Codercord
Codercord3d ago
Codercord
Codercord3d ago
<#1422650126694092822>
Category
Help needed
Product
Coder (v2)
Platform
Linux
Logs
Please post any relevant logs/error messages.
Vijay Bandari
Vijay BandariOP3d ago
Docs missing Okta related configurations https://coder.com/docs/admin/users/oidc-auth/refresh-tokens. In other place, it's mentioned that these scopes would work for most auth providers
matifali
matifali2d ago
@David

Did you find this page helpful?