cancel
Showing results for 
Search instead for 
Did you mean: 

How to make sure the cookie is destroyed?

Former Member
0 Kudos
278

We have some users who do not log out th EP7.0 session by clicking the "log off" link.

Instead, they kill the window by clicking the X on the upper-right corner of the window.

We are afraid the cookie will be picked up and used by the next user on the terminal.

How to prevent that ?

Thanks!

Accepted Solutions (1)

Accepted Solutions (1)

Former Member
0 Kudos

Hi Ashley,

I found a SAP Note which you can have a look and see if it help.

1) Note 696294 - Logoff from Portal does not invalidate 3rd-party SSO session

Help.sap

1) Application Logoff Page (checout "Deleting the Authentication in Logoff")

http://help.sap.com/saphelp_nw04s/helpdata/en/fc/04a5421935c511e10000000a1550b0/frameset.htm

SDN Forums

1) Logging off Portal - Cookies/Caching (checkout property ume.logoff.redirect.url to point to an ASP )

2) SSO cookie information persists when logging off (checkout the usage to define the actions for Session Release Agent or for DSM)

For reading and see if its helpful:

3) Portal logoff vs. browser close

4) Accessing Cookies

http://help.sap.com/saphelp_nw2004s/helpdata/en/78/985287c06b11d4ad310000e83539c3/frameset.htm

Ashley, do a search in the forum with "portal logoff cookie" and you will find tons of posts about the topic.

Hope that helps.

Ray

Answers (2)

Answers (2)

Former Member
0 Kudos

include javascript in masthead to force logoff when they close portal.

check below reference

Koti Reddy

Former Member
0 Kudos

Hi Ashley,

It is always recommended that you click Log Off in the masthead, and not simply close your browser if you want to end your portal session. Closing the browser leaves the portal still working, until it times out.

When working in a browser that supports multiple tabs, such as Internet Explorer 7 or Mozilla Firefox, if you close a tab in which a portal is running, the portal session is saved. If you then open the portal in a new tab, you are already logged on and need to first log off if you wish to log on with different credentials.

When the portal closes it redirects you to either the portal Logon dialog box or an external page that was associated to the portal.

If you are in the portal as an anonymous user, you do not see a Log Offlink in the masthead. In such a case, to terminate your portal session, close the browser.

Regards,

Anagha