Check maxage within cookie El miércoles, 28 de febrero de 2018, vallee.romain <vallee.rom...@gmail.com> escribió:
> Thank you all for your response. > I'm surprised the TGC stays after the browser closes. > > For me, if we didn't check "Remember Me", we had authentication per > session and not a cookie. > > > cas.tgc.name=TGC > #cas.tgc.secure=false > #cas.tgc.rememberMeMaxAge=1350000 > cas.tgc.encryptionKey=kGF9P2ZuU0ovlaCWxhiHix1bxH2pGfqlG5qGzqdxjY4 > cas.tgc.signingKey=K5yrl7ThQ5wwX8pbtEgdHF4aDuwUwFkHmhARzSRdNvNpXF1FFk_ > sYIgRHZZVJWdlMlGecQ-bePNlf0pexIzj2A > cas.tgc.cipherEnabled=true > > # #remember me 31 days in seconds > # # Set to a negative value to never expire tickets > cas.ticket.tgt.maxTimeToLiveInSeconds=25200 > #cas.ticket.tgt.timeToKillInSeconds=7200 > cas.ticket.tgt.rememberMe.enabled=true > cas.ticket.tgt.rememberMe.timeToKillInSeconds=1350000 > #cas.ticket.tgt.timeout.maxTimeToLiveInSeconds=1350000 > > > This is my new configuration. > but the TGC cookie still remains after the closing of the web browser. > In version 4.2 of jasig, if we closed the browser, the session was no > longer maintained. > > > > Le mardi 27 février 2018 17:23:57 UTC+1, rbon a écrit : >> >> Romain, >> >> I guess cas.tgc.remeberMeMaxAge overrides cas.tgc.maxAge. >> If you want your session to end when browser is closed, leave out >> cas.tgc.rememberMeMaxAge. >> >> Ray >> >> On Tue, 2018-02-27 at 00:09 -0800, vallee.romain wrote: >> >> Hello, >> >> i try to setup jasig TGC for this use case : >> >> When i check rememberMe : 1 months without need to enter login.password >> >> When i don't check rememberme : 7 hours unless i close the brother . If i >> close the brother, i would like to have login/password prompte at next >> login. >> >> >> I think rememberMe if ok . >> >> But when i try to closed/open the brother, the session is already up . >> >> # cas.tgc.path= >> cas.tgc.maxAge=-1 >> # cas.tgc.domain= >> cas.tgc.name=TGC >> cas.tgc.secure=false >> cas.tgc.rememberMeMaxAge=1350000 >> cas.tgc.encryptionKey=xxxxxxxxxxx >> cas.tgc.signingKey=xxxxxxxxxxxxxxxxx >> cas.tgc.cipherEnabled=true >> >> # #remember me 31 days in seconds >> # # Set to a negative value to never expire tickets >> cas.ticket.tgt.maxTimeToLiveInSeconds=1350000 >> cas.ticket.tgt.timeToKillInSeconds=7200 >> cas.ticket.tgt.rememberMe.enabled=true >> cas.ticket.tgt.rememberMe.timeToKillInSeconds=1350000 >> cas.ticket.tgt.timeout.maxTimeToLiveInSeconds=1350000 >> ## >> #Throttled Timeout >> ## >> cas.ticket.tgt.throttledTimeout.timeToKillInSeconds=28800 >> cas.ticket.tgt.throttledTimeout.timeInBetweenUsesInSeconds=5 >> cas.ticket.tgt.hardTimeout.timeToKillInSeconds=28800 >> >> >> >> Have you got an idea ? >> >> Best regards >> >> Romain >> >> -- >> Ray Bon >> Programmer analyst >> Development Services, University Systems >> 2507218831 | CLE 019 | rb...@uvic.ca >> >> -- > - Website: https://apereo.github.io/cas > - Gitter Chatroom: https://gitter.im/apereo/cas > - List Guidelines: https://goo.gl/1VRrw7 > - Contributions: https://goo.gl/mh7qDG > --- > You received this message because you are subscribed to the Google Groups > "CAS Community" group. > To unsubscribe from this group and stop receiving emails from it, send an > email to cas-user+unsubscr...@apereo.org. > To view this discussion on the web visit https://groups.google.com/a/ > apereo.org/d/msgid/cas-user/6c3297a3-0c5e-478e-ba81- > 0a4857dc6f5c%40apereo.org > <https://groups.google.com/a/apereo.org/d/msgid/cas-user/6c3297a3-0c5e-478e-ba81-0a4857dc6f5c%40apereo.org?utm_medium=email&utm_source=footer> > . > -- - Website: https://apereo.github.io/cas - Gitter Chatroom: https://gitter.im/apereo/cas - List Guidelines: https://goo.gl/1VRrw7 - Contributions: https://goo.gl/mh7qDG --- You received this message because you are subscribed to the Google Groups "CAS Community" group. To unsubscribe from this group and stop receiving emails from it, send an email to cas-user+unsubscr...@apereo.org. To view this discussion on the web visit https://groups.google.com/a/apereo.org/d/msgid/cas-user/CAMY5mifHoV6BFVAhmYn1rxQepy4YGbqDxf2UG4X1AhEgOo3n4w%40mail.gmail.com.
