How to expire a ClientStorageService session
Simon Lundström
simlu at su.se
Fri May 27 06:18:30 EDT 2016
On Thu, 2016-05-26 at 13:48:42 +0000, Cantor, Scott wrote:
> > After we've changed the password the IDP session is still valid. Is it
> > possible to expire a specific session ID caught on the IDP logs?
>
> Not at present. It's a known need and was included in the design process that went into V3, but I would note that nobody has requested it in Jira either.
Ye ask and ye shall receive: <https://issues.shibboleth.net/jira/browse/SIDP-633>
Thanks Scott!
Have a great weekend y'all.
BR,
- Simon
P.S. For the archive, since I didn't spot it the first time I looked; if
you want to log the session ID it's %s in the audit log, see
<https://wiki.shibboleth.net/confluence/display/IDP30/AuditLoggingConfiguration#AuditLoggingConfiguration-Built-InFields>
More information about the users
mailing list