If there is a match, the WebGate logout handler is triggered. The Logout URL triggers the logout handler, which removes the cookie (OAMAuthnCookie for OAM WebGates) and requires the user to re-authenticate the next time he accesses a resource protected by Access Manager. Table 27-2 Logout Details After Registration (ObAccessClient.xml) Element After registration, the ObAccessClient.xml file is populated with the information in Table 27-2. Several elements in the OAM Webgate registration page enable centralized logout for OAM WebGates. Lands on end_url (passed in as query parameter) after logout This can also be a full URL format with a host:port, where OAM Server calls back directly without reconstructing callback URL. OAM Server dynamically constructs the full URL based on the host:port in the original request and calls back on it. The WebGate parameter Logout Callback URL can be configured using a URI format (recommended), without host:port.
The SSO Engine supports the central logout page on the OAM Server and:Ĭalls back to Logout Callback URL of OAM WebGates during logout Centralized logout for 12 c agents sets the cookie from loggedout to empty and expires OAMAuthnCookie_ to explicitly clear it during logout, (rather than leaving behind an empty or logged out cookie). When the agent is notified, the agent clears the client-side state of the application.Ĭonfiguring OAM WebGates for logout against OAM Servers requires a Logout Callback URL ( Table 15-3).
The SSO engine then sends a Session Cleared response.Ĭlearing the user token and the session context clears the server-side state, which includes clearing the OAM_ID cookie set on the server side. The Session management engine clears the token and session context. The SSO engine sends a Clear Session request. When the SSO Engine receives a user-session-exists request, the Session Management Engine looks up the session and responds with the-session-exists response. Generally speaking, during centralized logout, the SSO Engine receives a user-session-exists request and sends out a Session Cleared response.
0 kommentar(er)
