Hi, I feel a "do'h" Homer Simpson moment coming up... Looks like I got it sorted now, but had to do 2 things: * Add quotes around the cookie name in the logout.php. DO'H * Put the logout script for the portal site on the portal server instead of on the SSO server. Before I had the logout button on the portal site link to https://sso.example.com/logout.php, but now it points to https://portal.example.com/logout.php (but it's the same file :)) Which means each protected site needs its own logout script to delete its own service cookie. Smells like a security feature around access to cookies. Is that correct? Thanks!!
Regards, -- Guus Houtzager | Project Resource Center | R21 Infrastructure Services T. +31 30 689 10 51 | M. +31 6 27 159 035 http://www.nl.capgemini.com > -----Original Message----- > From: Martin Sucha [mailto:such...@uniba.sk] > Sent: donderdag 19 april 2012 5:03 > To: cosign-discuss@lists.sourceforge.net > Subject: Re: [Cosign-discuss] Logout issue > > Hi, > > On Thursday 19 April 2012 16:14:11 Houtzager, Guus wrote: > > To see what's what I put the following lines in > > https://portal.example.com/logout.php: > > > > setcookie(cosign, "null", time()-3600, '/', "", TRUE ); > > setcookie(cosign-portal, "null", time()-3600, '/', "", TRUE ); > The problem is here. You should put the cookie name in a string, as in: > setcookie("cosign", "null", time()-3600, '/', "", TRUE ); > setcookie("cosign-portal", "null", time()-3600, '/', "", TRUE ); > > The first setcookie works, because PHP evaluates undefined constant to > its name, hence cosign evaluates to "cosign". On the other hand cosign- > portal is treated as "cosign"-"portal" which then evaluates to 0 (as > both strings evaluate to zero and 0-0=0) > > Regards, > Martin Sucha > > > ----------------------------------------------------------------------- > ------- > For Developers, A Lot Can Happen In A Second. > Boundary is the first to Know...and Tell You. > Monitor Your Applications in Ultra-Fine Resolution. Try it FREE! > http://p.sf.net/sfu/Boundary-d2dvs2 > _______________________________________________ > Cosign-discuss mailing list > Cosign-discuss@lists.sourceforge.net > https://lists.sourceforge.net/lists/listinfo/cosign-discuss This message contains information that may be privileged or confidential and is the property of the Capgemini Group. It is intended only for the person to whom it is addressed. If you are not the intended recipient, you are not authorized to read, print, retain, copy, disseminate, distribute, or use this message or any part thereof. If you receive this message in error, please notify the sender immediately and delete all copies of this message. ------------------------------------------------------------------------------ For Developers, A Lot Can Happen In A Second. Boundary is the first to Know...and Tell You. Monitor Your Applications in Ultra-Fine Resolution. Try it FREE! http://p.sf.net/sfu/Boundary-d2dvs2 _______________________________________________ Cosign-discuss mailing list Cosign-discuss@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/cosign-discuss
