OpenDJ 2.4.5 (Configuration data store)
Redhat Directory server 9.0 (User data store).
I am seeing an issue with Post Authentication plugins where they are not being called when I used persistent cookie (DProPCookie) configuaration
Here is what I have done.
Enabled persistent cookie as below
"DProPCookie" which enables users to access openAMwithout having to re-authenticate
a. click [Access Control] tab -> select realm
b. click [Authentication] tab -> "All Core Settings ..." button
c. enable persistent cookie mode and provide maximum time
Persistent Cookie Mode: Enabled
Persistent Cookie Maximum Time: 86400 seconds (24 hrs)
d. click "Save" button
Updated the session time out to 24 hrs
a. click [Configuaration] tab
b. click [Global] tab -> "Session" button
c. Goto Dynamic attributes and update time
Pesrsistent cookie Testing
clicked on SP intiated SingleSignOn
Entered credentials on the IDP login page
User authenticated and post authentication plugins are also called .
closed the browser
opened the browser . This time Openam didn't ask for authentication as expected but failed to call Post authentication plugins. if I logout and login again then it is calling Post authentication modules.