Hi all ,can anyone help here,
*Problem i am facin...
# ory-selfhostingc
crooked-student-43886
11/29/2023, 1:10 PMHi all ,can anyone help here,
Problem i am facing:
I have 2 apps with individual client id and client secret,Both the application are individually handling there session
when i set remember_me in the accept consent to true in one app ory hydra is trying to logs me in correctly,
but since the remember_me is true in the second app i automatically get logged in as hydra is creating session in background ,
but i don't want this behavior , that is i don't want hydra to create session ,
if i set remember_me to false , hydra is not creating session, but because of this it is always showing the consent screen on every login request i make , because skip is never becoming true in this case
The Behavior i want : skip should become true , when the user is already given consent to the application and this should work with remember_me as false as i don't want hydra to keep track of session.
crooked-student-43886
11/30/2023, 3:28 AMI am using Ory hydra , in a self hosting environment.
with different client id and client secret for both app, and i am using only OAUTH2.0 and not OIDC.
Just to give you more context:
Both the apps are handling session on there own and the session is not attached to access_token,
i am just validating the access token and based on that i am creating the session.
App1 -> login -> consent -> Perform auth code and access_token exchange in the callback -> pass the access token to get the user profile form the identity api -> validate the access token -> if token is valid -> get the profile data -> if account already exist in app1(create the session) else create a new account in background and sign in the user(create session)
Similarly for App2
16 Views