petersorensen Absent Member.
Absent Member.
355 views

Re: Global Logout (incl. backend applications) with redirection


Some time since I last added to this thread, but we had put that
particular project on hold, but we are back on the case. The mangle
cookies options appears to only address the security element to this
problem, ensuring that a second user in the same browser does not see
the session and therefore information of the first user. However, it
does not appear to address the architectural problem in that it does not
kill the session on the backend server; the now OOTB approach relies on
session timeouts of the backend systems, which could lead to resource
problems. Have I understood the new functionality correctly?


--
petersorensen
------------------------------------------------------------------------
petersorensen's Profile: http://forums.novell.com/member.php?userid=111733
View this thread: http://forums.novell.com/showthread.php?t=447163

0 Likes
1 Reply
Knowledge Partner Knowledge Partner
Knowledge Partner

Re: Global Logout (incl. backend applications) with redirection

petersorensen wrote:

>
> Some time since I last added to this thread, but we had put that
> particular project on hold, but we are back on the case. The mangle
> cookies options appears to only address the security element to this
> problem, ensuring that a second user in the same browser does not see
> the session and therefore information of the first user. However, it
> does not appear to address the architectural problem in that it does
> not kill the session on the backend server; the now OOTB approach
> relies on session timeouts of the backend systems, which could lead
> to resource problems. Have I understood the new functionality
> correctly?


Use some javascript that forces to close the browser window when the
user hits the AGLogout maybe? If both apps (or any others) should only
use session cookies (if they use cookies at all) to maintain a session
status. If the browser gets closed then these cookies are gone and
therefore the session is invalidated on all backend webservers.

Complete SLO is never really easy unfortunately

--
Cheers,
Edward
0 Likes
The opinions expressed above are the personal opinions of the authors, not of Micro Focus. By using this site, you accept the Terms of Use and Rules of Participation. Certain versions of content ("Material") accessible here may contain branding from Hewlett-Packard Company (now HP Inc.) and Hewlett Packard Enterprise Company. As of September 1, 2017, the Material is now offered by Micro Focus, a separately owned and operated company. Any reference to the HP and Hewlett Packard Enterprise/HPE marks is historical in nature, and the HP and Hewlett Packard Enterprise/HPE marks are the property of their respective owners.