SP client-side session storage and originating IdP

Wessel, Keith kwessel at illinois.edu
Mon Aug 13 14:41:58 EDT 2018

Hi, all,

We've been looking at the new SP client-side storage as an option for making more horizontally scalable containerized applications running in AWS. In hopes of avoiding a database or Memcache instance, we're looking at the new cookie storage that SP 3.0 offers.

The docs say that you provide a list of attributes that you want to store in the cookie. I assume these are attribute friendly names as configured in the attribute map.

I'm wondering what other non-attribute information gets stored in the cookie. Specifically, will another clustered SP node know the IdP that generated the assertion to be able to initiate a federated logout?


More information about the users mailing list