When the provider is incorrect,`useAutoSignin` keeps reloading the page indefinitely

[Ennoriel]

When the provider is incorrect,useAutoSignin keeps reloading the page indefinitely.

I have an application where the authority / client_id changes and may be undefined. In this case, the http call to the well-known fails but I guess it shouldn't reload the page. I've tried multiple options, without any change:

monitorSession: false,
checkSessionIntervalInSeconds: 10,
silentRequestTimeoutInSeconds: 10,
stopCheckSessionOnError: true,

I have made a reproduction repo: https://github.com/Ennoriel/repro-big-react-oidc-provider

// App.tsx
import { useAutoSignin } from "react-oidc-context";

function App() {
  // If you provide no signinMethod at all, the default is signinRedirect
  const { isLoading, isAuthenticated, error } = useAutoSignin({
    signinMethod: "signinRedirect",
  });

  if (isLoading) {
    return <div>Signing you in/out...</div>;
  }

  if (!isAuthenticated) {
    return <div>Unable to log in</div>;
  }

  if (error) {
    return <div>An error occured</div>;
  }

  return <div>Signed in successfully</div>;
}

export default App;

// main.tsx
import { AuthProvider } from "react-oidc-context";
import App from "./App";
import { createRoot } from "react-dom/client";

const oidcConfig = {
  authority: "https://this-does-not-exist.xwgfsf",
  client_id: "this_dose_not_exist",
  redirect_uri: window.origin,
};

createRoot(document.getElementById("root")!).render(
  <AuthProvider {...oidcConfig}>
    <App />
  </AuthProvider>
);

Did I do something that I shouldn't have?

[4val0v]

I think @aBytex (author of this hook) can suggest something to you

[aBytex]

@4val0v thanks for mentioning!

@Ennoriel I will have a look at this, as soon as possbile, but I assume the problem is the same, using the https://github.com/authts/react-oidc-context?tab=readme-ov-file#automatic-sign-in described implementation, without the hook? (Have you tried it?)
Because the hook basically just does, what the default readme describes for the automatic sign-in and is just a convenience hook.

[aBytex]

@Ennoriel on a fast track, opening your reproduction repo on stackblitz, I don't see any reloading of the page.
Instead I can verify it correctly displays Unable to log in on the page.
Thus for me, there are no infinite page reloads with your code.

See: https://stackblitz.com/github/Ennoriel/repro-big-react-oidc-provider

[zach-betz-hln]

Related: #1489

This only seems to happen for me in Firefox, not Chrome.

Our workaround for now is to check the auth server health first before doing the auto sign in (also mentioned in the linked issue). Example.

[aBytex]

@zach-betz-hln thanks for the hint!

Just for the records: I tried both (chrome and firefox) using stackblitz and the infinite reload did not occur for me. But since it is not running natively on my machine due to stackblitz, this might not happen anyway in this case.

---

Sounds like you are doing nothing wrong @Ennoriel in this case.

[Ennoriel]

@Ennoriel I will have a look at this, as soon as possbile, but I assume the problem is the same, using the https://github.com/authts/react-oidc-context?tab=readme-ov-file#automatic-sign-in described implementation, without the hook?

Hello and sorry for the late reply

Yes, it was the same with useAutoSignin.

Our workaround for now is to check the auth server health first before doing the auto sign in (also mentioned in the linked issue). Example.

This seems like the best solution to go for. 😃