stages/user_login: stay logged in (#4958)

* add initial remember me offset Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add to go executor Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add ui for user login stage Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add tests Signed-off-by: Jens Langhammer <jens@goauthentik.io> * update docs Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io>
2023-03-15 20:21:05 +01:00
parent fd9293e3e8
commit eaf56f4f3f
21 changed files with 311 additions and 18 deletions
--- a/website/docs/flow/index.md
+++ b/website/docs/flow/index.md
@ -36,7 +36,7 @@ Flows are designated for a single purpose. This designation changes when a flow

 This is designates a flow to be used for authentication.

-The authentication flow should always contain a [**User Login**](stages/user_login.md) stage, which attaches the staged user to the current session.
+The authentication flow should always contain a [**User Login**](stages/user_login/index.md) stage, which attaches the staged user to the current session.

 #### Invalidation

--- a/website/docs/flow/stages/user_login/index.md
+++ b/website/docs/flow/stages/user_login/index.md
@ -26,6 +26,12 @@ You can set the session to expire after any duration using the syntax of `hours=

 All values accept floating-point values.

+## Stay signed in offset
+
+When this is set to a higher value than the default _seconds=0_, a prompt is shown, allowing the users to choose if their session should be extended or not. The same syntax as for _Session duration_ applies.
+
+![](./stay_signed_in.png)
+
 ## Terminate other sessions

 When enabled, previous sessions of the user logging in will be revoked. This has no affect on OAuth refresh tokens.
--- a/website/docs/flow/stages/user_login/stay_signed_in.png
+++ b/website/docs/flow/stages/user_login/stay_signed_in.png
--- a/website/docs/flow/stages/user_logout.md
+++ b/website/docs/flow/stages/user_logout.md
@ -2,4 +2,4 @@
 title: User logout stage
 ---

-Opposite stage of [User Login Stages](user_login.md). It removes the user from the current session.
+Opposite stage of [User Login Stages](user_login/index.md). It removes the user from the current session.
--- a/website/docs/providers/ldap/index.md
+++ b/website/docs/providers/ldap/index.md
@ -89,7 +89,7 @@ The following stages are supported:
    SMS-based authenticators are not supported as they require a code to be sent from authentik, which is not possible during the bind.

 -   [User Logout](../../flow/stages/user_logout.md)
-   [User Login](../../flow/stages/user_login.md)
+-   [User Login](../../flow/stages/user_login/index.md)
 -   [Deny](../../flow/stages/deny.md)

 #### Direct bind