Two logins when using oauth2 provider directly

[mvtec-richter]

We have tried to setup theia-cloud with our theia-based IDE using an oauth2 provider directly.
First of all, this went really smooth, the theia-cloud backend is really robust and versatile!
Using oauth2 provider directly without keycloak was a bit challenging, but we got it to run. However, it's always necessary to login twice, once on the login page and once when accessing the instance. Do we have a problem with our configuration or is this a fundamental issue when not using keycloak?

[sgraband]

Hey,

Thanks for reaching out. We’d definitely appreciate any documentation you can share regarding the setup process. If you have any general information about what needs to be changed and how to configure things, we’re happy to review, extend, or polish the documentation for this use case.

Regarding your question: Without more details about the specific changes or adaptations, it’s difficult to pinpoint the root cause. From our perspective, this doesn’t seem like a fundamental issue—it’s likely related to configuration or how Theia Cloud manages the tokens.

A couple of things you might want to check in your token configuration:

• Is the initial token restricted to a specific domain or subdomain, making it invalid in other contexts?
• Do you receive a second token after logging in again? If so, what differences are there between the first and second tokens?

Let us know what you find—we’re happy to help further.