Skip to content

OAuth sessions are created before the authorization grant gets actually completed #5276

New issue
New issue
Open
Open
OAuth sessions are created before the authorization grant gets actually completed#5276
Labels
A-Next-Gen-AuthRelated to the next generation authentication APIsO-OccasionalAffects or can be seen by some users regularly or most users rarelyS-TolerableMinor significance, cosmetic issues, low or no impact to users.T-DefectSomething isn't working
@sandhose

Description

@sandhose
sandhose
opened on Nov 20, 2025

For some reason, we're creating the OAuth session (but not the access token nor the device on the HS side) when we fulfill the grant, but not when the token exchanges.

This leads to a weird UX where the session starts appearing in your list even though you haven't completed it

Metadata

Metadata

Assignees

No one assigned

    Labels

    A-Next-Gen-AuthRelated to the next generation authentication APIsO-OccasionalAffects or can be seen by some users regularly or most users rarelyS-TolerableMinor significance, cosmetic issues, low or no impact to users.T-DefectSomething isn't working

    Type

    No type

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions