'check-sso' feature in the api-plattform

The frontend allows us to login/logout. It authenticates the user against keycloak

This is done somehow on the first request to the web app. It does a check-sso by using some cookies and gets a true or false.

If true, tokens are refreshed.

If false the the user is redirected to a login page.

Our API should work in the same manner.

Can you help us to archive that.

I think we have to with a 'check-sso' feature in the api-plattform

BTW: a keycloak object in the webapp contains: