feat: support autologout config

[JessicaJHee]

Description

Please explain the changes you made here.
Enables autoLogout in RHDH

• Disabled by default
• Default idleTimeoutMinutes in RHDH is set to 60 minutes

E2E tests are also included in the PR under the auth provider tests

• tests passed locally

Which issue(s) does this PR fix

• Fixes RHIDP-9394

PR acceptance criteria

Please make sure that the following steps are complete:

• GitHub Actions are completed and successful
• Unit Tests are updated and passing
• E2E Tests are updated and passing
• Documentation is updated if necessary (requirement for new features)
• Add a screenshot if the change is UX/UI related

How to test changes / Special notes to the reviewer

Enable this feature in the app-config and verify in the UI after 30 seconds that the pop-up appears

auth:
  autologout:
    enabled: true
    idleTimeoutMinutes: 0.5

[github-actions]

The image is available at:

• quay.io/rhdh-community/rhdh:pr-3643
• quay.io/rhdh-community/rhdh:pr-3643-0c474c84

[github-actions]

The image is available at:

• quay.io/rhdh-community/rhdh:pr-3643
• quay.io/rhdh-community/rhdh:pr-3643-1e2ee18c

[JessicaJHee]

/test e2e-ocp-operator-auth-providers-nightly

[github-actions]

The image is available at:

• quay.io/rhdh-community/rhdh:pr-3643
• quay.io/rhdh-community/rhdh:pr-3643-8eaca480

[github-actions]

The image is available at:

• quay.io/rhdh-community/rhdh:pr-3643
• quay.io/rhdh-community/rhdh:pr-3643-804ccfa0

[JessicaJHee]

/test e2e-ocp-operator-auth-providers-nightly

[JessicaJHee]

/test e2e-ocp-operator-auth-providers-nightly

[github-actions]

The image is available at:

• quay.io/rhdh-community/rhdh:pr-3643
• quay.io/rhdh-community/rhdh:pr-3643-b2d0d600

[JessicaJHee]

/test e2e-ocp-operator-auth-providers-nightly

[JessicaJHee]

/retest

[github-actions]

The image is available at:

• quay.io/rhdh-community/rhdh:pr-3643
• quay.io/rhdh-community/rhdh:pr-3643-66345d4e

[JessicaJHee]

/retest

[JessicaJHee]

/test e2e-ocp-operator-auth-providers-nightly

[JessicaJHee]

/test e2e-ocp-operator-auth-providers-nightly

[rhdh-qodo-merge]

You are above your monthly Qodo Merge usage quota. If you are a paying user, please link your GitHub/GitLab/Bitbucket account with your qodo account here to claim your seat. To allow usage organization-wide without linking, please reach to Qodo.

[github-actions]

The image is available at:

• quay.io/rhdh-community/rhdh:pr-3643
• quay.io/rhdh-community/rhdh:pr-3643-1a99ed80

[JessicaJHee]

/test e2e-ocp-operator-auth-providers-nightly

[rhdh-qodo-merge]

You are above your monthly Qodo Merge usage quota. If you are a paying user, please link your GitHub/GitLab/Bitbucket account with your qodo account here to claim your seat. To allow usage organization-wide without linking, please reach to Qodo.

[JessicaJHee]

This error was causing the pop-up to be blocked in OpenShift deployments (causing auth e2e test failures):

index.esm.js:1 Creating a worker from 'blob:<rhdh-url>' violates the following Content Security Policy directive: "worker-src 'self'". The action has been blocked.

There are 2 ways to solve this issue:

1. Setting useWorkerTimers: false

• The timer may not be 100% accurate if the tab is in the background and the timer "drifts"

3. Adding this to app-config

    backend:
      csp:
        worker-src:
          - "'self'"
          - "blob:"

Allowing blob: URLs is not safe and has security implications for enterprise customers. It's better to set useWorkerTimers: false by default and let customers configure the CSP themselves if they need precise timeouts.

[github-actions]

The image is available at:

• quay.io/rhdh-community/rhdh:pr-3643
• quay.io/rhdh-community/rhdh:pr-3643-0150f95a

[github-actions]

The image is available at:

• quay.io/rhdh-community/rhdh:pr-3643
• quay.io/rhdh-community/rhdh:pr-3643-efbe4bb5

[github-actions]

The image is available at:

• quay.io/rhdh-community/rhdh:pr-3643
• quay.io/rhdh-community/rhdh:pr-3643-07544f5e

[JessicaJHee]

/test e2e-ocp-operator-auth-providers-nightly

[rhdh-qodo-merge]

You are above your monthly Qodo Merge usage quota. If you are a paying user, please link your GitHub/GitLab/Bitbucket account with your qodo account here to claim your seat. To allow usage organization-wide without linking, please reach to Qodo.

[github-actions]

The image is available at:

• quay.io/rhdh-community/rhdh:pr-3643
• quay.io/rhdh-community/rhdh:pr-3643-2903d1a1

[JessicaJHee]

/test e2e-ocp-operator-auth-providers-nightly

[JessicaJHee]

/test e2e-ocp-operator-auth-providers-nightly

[openshift-ci]

[APPROVALNOTIFIER] This PR is NOT APPROVED

This pull-request has been approved by:
Once this PR has been reviewed and has the lgtm label, please assign polasudo for approval. For more information see the Code Review Process.

The full list of commands accepted by this bot can be found here.

Needs approval from an approver in each of these files:

• OWNERS

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

[sonarqubecloud]

Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarQube Cloud

[JessicaJHee]

/test e2e-ocp-operator-auth-providers-nightly

[github-actions]

The image is available at:

• quay.io/rhdh-community/rhdh:pr-3643
• quay.io/rhdh-community/rhdh:pr-3643-c6922749

[openshift-ci]

@JessicaJHee: The following tests failed, say /retest to rerun all failed tests or /retest-required to rerun all mandatory failed tests:

Test name	Commit	Details	Required	Rerun command
ci/prow/e2e-ocp-helm	c692274	link	true	/test e2e-ocp-helm
ci/prow/e2e-ocp-operator-auth-providers-nightly	c692274	link	false	/test e2e-ocp-operator-auth-providers-nightly

Full PR test history. Your PR dashboard.

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes-sigs/prow repository. I understand the commands that are listed here.