Login through AWS looses login from federated idp on exit

[aholen]

I can login through aws-method via ms365 as identity provider for aws Identity Center.

when I exit grafana-kiosk, chromium forgets the ms365 session state (cookie or something) , so one has to redo the entire login-process again.

This doesn’t happen when logging in through “normal” chromium: there it remembers the login-info, and I can go directly to the managed grafana.

could be because grafana-kiosk is clearing cookies, using different profile path etc.

to reproduce:

1. Start grafana-kiosk
2. Press login on “AWS”
3. Login to AWS provider with email, password and 2fa, in my case ms365. (Marked “remember me”)
4. Grafana opens OK.
5. Exit grafana-kiosk
6. Start grafana-kiosk.
7. Should now do the above steps , except 3)

[aholen]

After investigating this, I found the following:

• Related chromedp issue
• grafana-kiosk creates a temporary directory, hence the browser state is never stored between session.
• Every new grafana-kiosk session runs with chromedp.Flag("incognito"), true

Rudimentary testing shows that to fix this, one has to 1) disable the incognito-flag and 2) use the same profile dir for every session.