Hello reader, I am running into two issues at the moment and have tried everything I know.
MAIN GOAL: Give extended access to our main dashboard to special partners of ours. Normal access should grant 1 day sessions, access through our special connection page should grant 30 day uninterupted sessions.
I have created 2 clients (live inside the same domain):
- SSO session max 30 days
- Realm wide Client session max 1 day
- Client A with 1 day Client session max
- Client B with 30 day Client session max
Client B is alive on a page that will give special access to certain partners of ours to the main dashboard which is usually protected by Client A. When a Client A session doesn’t exist Client B should give access to Client A which I think I currently have working. Here are the issues I am having though.
- When accessing Client A not through Client B and Client A is not logged in while Client B is logged in, it will also log out Client B > Probably ending the SSO session, but haven’t found a solution yet.
- Client A is living longer than 1 day for some reason. I think it is refreshing through the SSO session, but I am not sure why. Client A should never exceed its Client session max of 1 day while Client B should live the full SSO session max.
Note: I am not fluent yet in de Admin Console for keycloak so I might just be missing settings.
Any help at all is welcome! Also other solutions towards my wanted behaviour. Thanks!