Merve, Allowing CAS session after browser close would be a HUGE security vulnerability. Do not try to get around this, do not even think about it.
Ray On Fri, 2019-09-20 at 05:42 -0700, merve ceylan wrote: Hi, The application will register how the user reads from the cas's database. After logging into the cas application with casuser without connecting the application, I close the browser and it is automatically logout. Is this Cas's working mechanism? Can't we put a timeout for that? Thanks, 20 Eylül 2019 Cuma 14:46:15 UTC+3 tarihinde David Curry yazdı: That's how it's supposed to work. The CAS cookies are session cookies. When you end the session (close your browser), the cookies are deleted. Managing application sessions is outside of CAS' scope. If an application wants to stay logged in across browser sessions, then that application should have its own cookie to do that. Lots of applications do that if you check some sort of "stay logged in" box -- Google, Facebook, Twitter, etc. -- DAVID A. CURRY, CISSP DIRECTOR • INFORMATION SECURITY & PRIVACY THE NEW SCHOOL • INFORMATION TECHNOLOGY 71 FIFTH AVE., 9TH FL., NEW YORK, NY 10003 +1 646 909-4728 • [email protected]<javascript:> On Fri, Sep 20, 2019 at 2:25 AM merve ceylan <[email protected]<javascript:>> wrote: Hello, After logging in with cas, when I close the browser and open it again, it becomes a logout and the login screen appears again. Session closes and the cookie is deleted. What should I do to avoid logout when I close the browser? Thanks, -- - Website: https://apereo.github.io/cas - Gitter Chatroom: https://gitter.im/apereo/cas - List Guidelines: https://goo.gl/1VRrw7 - Contributions: https://goo.gl/mh7qDG --- You received this message because you are subscribed to the Google Groups "CAS Community" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]<javascript:>. To view this discussion on the web visit https://groups.google.com/a/apereo.org/d/msgid/cas-user/ed7e3085-7fbc-45a5-acd0-7db7fe9e575c%40apereo.org<https://groups.google.com/a/apereo.org/d/msgid/cas-user/ed7e3085-7fbc-45a5-acd0-7db7fe9e575c%40apereo.org?utm_medium=email&utm_source=footer>. -- Ray Bon Programmer Analyst Development Services, University Systems 2507218831 | CLE 019 | [email protected]<mailto:[email protected]> I respectfully acknowledge that my place of work is located within the ancestral, traditional and unceded territory of the Songhees, Esquimalt and WSÁNEĆ Nations. -- - Website: https://apereo.github.io/cas - Gitter Chatroom: https://gitter.im/apereo/cas - List Guidelines: https://goo.gl/1VRrw7 - Contributions: https://goo.gl/mh7qDG --- You received this message because you are subscribed to the Google Groups "CAS Community" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To view this discussion on the web visit https://groups.google.com/a/apereo.org/d/msgid/cas-user/f7e1447d91d8e63c4123e3beb047d01ac0ea2f2f.camel%40uvic.ca.
