Uploaded image for project: 'Identity Gateway'
  1. Identity Gateway
  2. OPENIG-3611

Provide a way to keep the user's AM session alive when just using the SingleSignOnFilter

    XMLWordPrintable

    Details

    • Type: Improvement
    • Status: Closed
    • Priority: Major
    • Resolution: Fixed
    • Affects Version/s: 6.0.0, 6.1.0, 6.5.0, 7.0.0
    • Fix Version/s: 7.0.0
    • Component/s: OpenAM
    • Labels:
    • Environment:
      IG using just a SingleSignOnFilter when protecting access to a backend application.
    • Support Ticket IDs:
    • Story Points:
      5

      Description

      IG should provide a way to enable keeping the user's session alive when just using the SingleSignOnFilter. This is often referred to as the sso-only mode.

      The SingleSignOnFilter makes use of AMs getSessionInfo action which makes a point of not triggering a session refresh when called. So even though the user has been using the session token for each request that passes through IG, the user will end up having to re-authenticate because the idle timeout has been reached.

        Attachments

          Issue Links

            Activity

              People

              Assignee:
              markdr Mark de Reeper
              Reporter:
              markdr Mark de Reeper
              Votes:
              1 Vote for this issue
              Watchers:
              9 Start watching this issue

                Dates

                Created:
                Updated:
                Resolved: