postdata and Session timeout
Robshaw, David A. (GSFC-423.0)[ASRC RESEARCH & TECHNOLOGY SOLUTIONS]
david.a.robshaw at nasa.gov
Tue Feb 19 17:23:54 EST 2013
Hi All --
I have two random scenarios, and welcome any info.
I have two applications authenticated with shibboleth. Activity using either application will extend my 'single' session. I log into App1. I access App2 (no login required as session was created by App1). I continue activity in App2 beyond the point where App1 would normally have timed out. I then access App1 by submitting a form. I do not receive a re-authentication login request (expected due to the session activity of App2). But the submitted form of App1 is interrupted by the postData/postTemplate shibboleth settings.
Is this an expected result? I thought the postTemplate would only be invoked for re-authentication.
I am also having timeout issues. It seems my session timeout is set to 30 minutes. I can use <Sessions timeout=x> to extend my session to longer than 30 minutes, but not shorter. This seems backward.
What attributes are involved in determining session longevity? How can I check my IdP's assertions?
Thanks for any help you can provide.
Dave
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://shibboleth.net/pipermail/users/attachments/20130219/add14819/attachment.html
More information about the users
mailing list