We’re experiencing intermittent session losses in our Process Mining dashboards when OAuth2 tokens expire. Users are unexpectedly logged out mid-analysis, losing their current work and filter configurations.
Our setup uses OAuth2 SSO with 1-hour access tokens. The issue occurs when users are actively working in the dashboard beyond the token lifetime. The session just drops without warning, forcing a complete re-authentication.
We’ve confirmed the OAuth2 provider is issuing refresh tokens:
Response headers show:
access_token: eyJhbGc...(expires 3600s)
refresh_token: def502...
token_type: Bearer
The token expiry happens silently - no refresh attempt is made. Is there a configuration in OutSystems Process Mining to handle OAuth2 token renewal automatically? We need silent token refresh to maintain session continuity across modules without user disruption.
Thanks for the insights. We’re using Azure AD as our OAuth2 provider with refresh tokens enabled. The 1-hour token lifetime is a compliance requirement we can’t change. Is there a specific OutSystems extension or forge component that handles this token refresh pattern for Process Mining? Building a custom solution seems complex given the module architecture.
The core issue is session management across modules when using federated authentication. Process Mining maintains its own session state separate from the main application session. When the OAuth2 access token expires, the Process Mining module loses authentication context but doesn’t trigger a refresh flow.
You’ll need to implement a session heartbeat mechanism that checks token validity before expiry and proactively refreshes it. This typically involves creating a timer-based client action that calls your OAuth2 token endpoint with the refresh token about 5 minutes before expiry. Store the new access token in session variables and update the authentication headers for subsequent API calls to the Process Mining backend.
I’ve seen this before. OutSystems doesn’t automatically handle OAuth2 refresh token flow out of the box for Process Mining modules. You need to implement a custom token renewal mechanism using server actions that intercept the token expiry. Check if your OAuth2 provider supports the refresh token grant type and ensure it’s enabled in your SSO configuration.