feat: support autologout config

Signed-off-by: Jessica He <[email protected]>

Author: JessicaJHee

e2e-tests/playwright/e2e/auth-providers/oidc.spec.ts

@@ -444,6 +444,67 @@ test.describe("Configure OIDC provider (using RHBK)", async () => {
     await context.clearCookies();
   });
 
+  test(`Enable autologout and user is logged out after inactivity`, async () => {
+    deployment.setAppConfigProperty("auth.autologout.enabled", "true");
+    deployment.setAppConfigProperty(
+      "auth.autologout.idleTimeoutMinutes",
+      "0.5", // minimum allowed value is 0.5 minutes
+    );
+    deployment.setAppConfigProperty(
+      "auth.autologout.promptBeforeIdleSeconds",
+      "3",
+    );
+    await deployment.updateAllConfigs();
+    await deployment.restartLocalDeployment();
+    await deployment.waitForDeploymentReady();
+
+    await deployment.waitForSynced();
+
+    const login = await common.keycloakLogin(
+      "zeus",
+      process.env.DEFAULT_USER_PASSWORD,
+    );
+    expect(login).toBe("Login successful");
+
+    // Wait for the inactivity popup to appear
+    const inactivityPopup = page.locator("text=Logging out due to inactivity");
+    await expect(inactivityPopup).toBeVisible({ timeout: 35000 });
+    await page.waitForTimeout(5000);
+
+    await page.reload();
+
+    const cookies = await context.cookies();
+    const authCookie = cookies.find(
+      (cookie) => cookie.name === "oidc-refresh-token",
+    );
+    expect(authCookie).toBeUndefined();
+  });
+
+  test(`Enable autologout and user stays logged in after clicking "Don't log me out"`, async () => {
+    const login = await common.keycloakLogin(
+      "zeus",
+      process.env.DEFAULT_USER_PASSWORD,
+    );
+    expect(login).toBe("Login successful");
+
+    // Wait for the inactivity popup to appear
+    const inactivityPopup = page.locator("text=Logging out due to inactivity");
+    await expect(inactivityPopup).toBeVisible({ timeout: 35000 });
+
+    const stayLoggedInButton = page.locator(
+      'button:has-text("Don\'t log me out")',
+    );
+    await stayLoggedInButton.click();
+
+    // Verify popup is dismissed
+    await expect(inactivityPopup).toBeHidden();
+
+    // Navigate to settings to verify user is still authenticated
+    await uiHelper.goToPageUrl("/settings", "Settings");
+    await uiHelper.verifyHeading("Zeus Giove");
+    await common.signOut();
+  });
+
   test.afterAll(async () => {
     console.log("[TEST] Starting cleanup...");
     await deployment.killRunningProcess();

packages/app/src/components/AppBase/AppBase.tsx

@@ -2,7 +2,11 @@ import { useContext } from 'react';
 import { Route } from 'react-router-dom';
 
 import { FlatRoutes } from '@backstage/core-app-api';
-import { AlertDisplay, OAuthRequestDialog } from '@backstage/core-components';
+import {
+  AlertDisplay,
+  AutoLogout,
+  OAuthRequestDialog,
+} from '@backstage/core-components';
 import { ApiExplorerPage } from '@backstage/plugin-api-docs';
 import {
   CatalogEntityPage,
@@ -152,6 +156,7 @@ const AppBase = () => {
           </Root>
         </ApplicationProvider>
       </AppRouter>
+      <AutoLogout enabled={false} idleTimeoutMinutes={60} />
     </AppProvider>
   );
 };