We are developing a custom Odoo module to support Lark SSO login. The integration works, but there is a problem:
- Odoo stores the Lark OAuth access token in the user record (
oauth_access_token
). - When the same user logs in from a second browser, the new token overwrites the old one, causing the first browser’s session to be invalidated ("session expired" error).
- We tried storing tokens in a separate model to track multiple sessions per user and only writing an "old" token to
oauth_access_token
, but this causes issues with Odoo’s internal OAuth validation. - If we don’t update
oauth_access_token
, login fails; if we do, only one session works at a time.
Question:
How can we allow multiple browsers to log in simultaneously with Lark SSO in Odoo, without causing session conflicts? Is there a recommended pattern or workaround for this situation? Any advice or best practices would be appreciated!
