Skip to content

[Bug]: OIDC token refresh flow is broken #9088

New issue
New issue
Open
Open
[Bug]: OIDC token refresh flow is broken#9088
Labels
bugAn issue reporting a potential bugneeds triageAn issue that needs to be triaged
@dareste

Description

@dareste
dareste
opened on Feb 6, 2026

Version

edge

What Kubernetes platforms are you running on?

Other

Steps to reproduce

There is a bug in the underlying njs logic that manages the OIDC flows. As a result, the refresh token flow is not working as expected.

This causes existing sessions not getting the updated tokens, which results in broken session continuity and users being forced to re-authenticate.

There's a PR in the NGINX OpenID reference implementation — the upstream for NIC's OIDC logic — that resolves the issue. NIC should include it in future releases: nginxinc/nginx-openid-connect#120.

Metadata

Metadata

Assignees

No one assigned

    Labels

    bugAn issue reporting a potential bugneeds triageAn issue that needs to be triaged

    Type

    No type

    Projects

    NGINX Ingress Controller

    Status

    Todo ☑

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions