RE: Liferay SAML token session not expired

Minsheng liu, modified 8 Years ago.

New Member Post: 1 Join Date: 1/13/16 Recent Posts

We use Liferay 6.2 EE version for the web site with Liferay SAML portlet.

Our site is configured and setup as SAML IDP for SSO login other third web sites.

The http session timeout is set as 30 minutes, the site is redirected to login page after HTTP session expires without the SAML token session.

The IDP SAML token session is also setup as 30 minutes; when users click the SAML token link, a SAML token is generated and login other site automatically; After 30 minutes HTTP session timeout, but the SAML token Session seems still alive and not expired, and cannot redirected to login page.

Thank you for the suggestions

Amos Fong, modified 5 Years ago.

RE: Liferay SAML token session not expired

New Member Posts: 2 Join Date: 11/20/18 Recent Posts

Hi did you got this issue resolved?
I'm having the same issue

Andrew Jardine, modified 5 Years ago.

RE: Liferay SAML token session not expired

Liferay Legend Posts: 2416 Join Date: 12/22/10 Recent Posts

Are you sure you have your token and your session timings in sync? Another thing to consider -- I've also seen cases in the past where "remember me" functionality has caused tokens to be renewed when they expire automagically.

Community

Company

Feedback

Ask Questions and Find Answers

Important:

Ask is now read-only. You can review any existing questions and answers, but not add anything new.

But - don't panic! While ask is no more, we've replaced it with discuss - the new Liferay Discussion Forum! Read more here here or just visit the site here:

discuss.liferay.com

RE: Liferay SAML token session not expired