postdata and Session timeout

Robshaw, David A. (GSFC-423.0)[ASRC RESEARCH & TECHNOLOGY SOLUTIONS] david.a.robshaw at
Tue Feb 19 17:23:54 EST 2013

Hi All  --

I have two random scenarios, and welcome any info.

I have two applications authenticated with shibboleth.  Activity using either application will extend my 'single' session.  I log into App1.  I access App2 (no login required as session was created by App1).  I continue activity in App2 beyond the point where App1 would normally have timed out.  I then access App1 by submitting a form.  I do not receive a re-authentication login request (expected due to the session activity of App2).  But the submitted form of App1 is interrupted by the postData/postTemplate shibboleth settings.

Is this an expected result?  I thought the postTemplate would only be invoked for re-authentication.

I am also having timeout issues.  It seems my session timeout is set to 30 minutes.  I can use <Sessions timeout=x>  to extend my session to longer than 30 minutes, but not shorter.  This seems backward.

What attributes are involved in determining session longevity?  How can I check my IdP's assertions?

Thanks for any help you can provide.


-------------- next part --------------
An HTML attachment was scrubbed...

More information about the users mailing list