Check maxage within cookie El miércoles, 28 de febrero de 2018, vallee.romain <[email protected]> escribió:
> Thank you all for your response. > I'm surprised the TGC stays after the browser closes. > > For me, if we didn't check "Remember Me", we had authentication per > session and not a cookie. > > > cas.tgc.name=TGC > #cas.tgc.secure=false > #cas.tgc.rememberMeMaxAge=1350000 > cas.tgc.encryptionKey=kGF9P2ZuU0ovlaCWxhiHix1bxH2pGfqlG5qGzqdxjY4 > cas.tgc.signingKey=K5yrl7ThQ5wwX8pbtEgdHF4aDuwUwFkHmhARzSRdNvNpXF1FFk_ > sYIgRHZZVJWdlMlGecQ-bePNlf0pexIzj2A > cas.tgc.cipherEnabled=true > > # #remember me 31 days in seconds > # # Set to a negative value to never expire tickets > cas.ticket.tgt.maxTimeToLiveInSeconds=25200 > #cas.ticket.tgt.timeToKillInSeconds=7200 > cas.ticket.tgt.rememberMe.enabled=true > cas.ticket.tgt.rememberMe.timeToKillInSeconds=1350000 > #cas.ticket.tgt.timeout.maxTimeToLiveInSeconds=1350000 > > > This is my new configuration. > but the TGC cookie still remains after the closing of the web browser. > In version 4.2 of jasig, if we closed the browser, the session was no > longer maintained. > > > > Le mardi 27 février 2018 17:23:57 UTC+1, rbon a écrit : >> >> Romain, >> >> I guess cas.tgc.remeberMeMaxAge overrides cas.tgc.maxAge. >> If you want your session to end when browser is closed, leave out >> cas.tgc.rememberMeMaxAge. >> >> Ray >> >> On Tue, 2018-02-27 at 00:09 -0800, vallee.romain wrote: >> >> Hello, >> >> i try to setup jasig TGC for this use case : >> >> When i check rememberMe : 1 months without need to enter login.password >> >> When i don't check rememberme : 7 hours unless i close the brother . If i >> close the brother, i would like to have login/password prompte at next >> login. >> >> >> I think rememberMe if ok . >> >> But when i try to closed/open the brother, the session is already up . >> >> # cas.tgc.path= >> cas.tgc.maxAge=-1 >> # cas.tgc.domain= >> cas.tgc.name=TGC >> cas.tgc.secure=false >> cas.tgc.rememberMeMaxAge=1350000 >> cas.tgc.encryptionKey=xxxxxxxxxxx >> cas.tgc.signingKey=xxxxxxxxxxxxxxxxx >> cas.tgc.cipherEnabled=true >> >> # #remember me 31 days in seconds >> # # Set to a negative value to never expire tickets >> cas.ticket.tgt.maxTimeToLiveInSeconds=1350000 >> cas.ticket.tgt.timeToKillInSeconds=7200 >> cas.ticket.tgt.rememberMe.enabled=true >> cas.ticket.tgt.rememberMe.timeToKillInSeconds=1350000 >> cas.ticket.tgt.timeout.maxTimeToLiveInSeconds=1350000 >> ## >> #Throttled Timeout >> ## >> cas.ticket.tgt.throttledTimeout.timeToKillInSeconds=28800 >> cas.ticket.tgt.throttledTimeout.timeInBetweenUsesInSeconds=5 >> cas.ticket.tgt.hardTimeout.timeToKillInSeconds=28800 >> >> >> >> Have you got an idea ? >> >> Best regards >> >> Romain >> >> -- >> Ray Bon >> Programmer analyst >> Development Services, University Systems >> 2507218831 | CLE 019 | [email protected] >> >> -- > - Website: https://apereo.github.io/cas > - Gitter Chatroom: https://gitter.im/apereo/cas > - List Guidelines: https://goo.gl/1VRrw7 > - Contributions: https://goo.gl/mh7qDG > --- > You received this message because you are subscribed to the Google Groups > "CAS Community" group. > To unsubscribe from this group and stop receiving emails from it, send an > email to [email protected]. > To view this discussion on the web visit https://groups.google.com/a/ > apereo.org/d/msgid/cas-user/6c3297a3-0c5e-478e-ba81- > 0a4857dc6f5c%40apereo.org > <https://groups.google.com/a/apereo.org/d/msgid/cas-user/6c3297a3-0c5e-478e-ba81-0a4857dc6f5c%40apereo.org?utm_medium=email&utm_source=footer> > . > -- - Website: https://apereo.github.io/cas - Gitter Chatroom: https://gitter.im/apereo/cas - List Guidelines: https://goo.gl/1VRrw7 - Contributions: https://goo.gl/mh7qDG --- You received this message because you are subscribed to the Google Groups "CAS Community" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To view this discussion on the web visit https://groups.google.com/a/apereo.org/d/msgid/cas-user/CAMY5mifHoV6BFVAhmYn1rxQepy4YGbqDxf2UG4X1AhEgOo3n4w%40mail.gmail.com.
