Our users regularly experience issues with GoodData session management. They either get redirected to the list of workspaces, or receive the ‘You have been logged out | Please log back in …’ prompt while e.g. editing a dashboard. This does not happen immediately - it seems to happen after a window of 10 minutes has passed, which I assume is a default expiration. That said, the experience is not universal for all our users - some have reported that they’ve left an unsaved GoodData dashboard open overnight, and been able to save it the next morning without issue.
The Analytics Designer is embedded in our SaaS product via an iframe and is configured to use our IdP (Auth0). In these redirect/logout cases, the user’s session in our product has not expired.
One obvious issue I’ve found is during the
https://{ourDomain}.<http://cloud.gooddata.com/login/oauth2/code/{ourDomain}.cloud.gooddata.com|cloud.gooddata.com/login/oauth2/code/{ourDomain}.cloud.gooddata.com>
request the SPRING_SEC_OAUTH2_AUTHZ_CLIENT cookie is not set because it is too large. As I understand it, this cookie is an encoded version of the access_token and refresh_token provided by our IdP.
Can the GoodData team suggest options for us to resolve this?