...
Related Documents | |||||||
|---|---|---|---|---|---|---|---|
Confluence Link |
| ||||||
...
| Info |
|---|
Important - Please implement the new logout strategy outlined below in your applications. |
...
Impact on Cognito SSO Cookie
With applications performing local application logouts only, the Cognito SSO cookie will naturally expire after 1 hour. The SSO cookie should not be affected by local application logoutsbe deleted when the local application logout is performed.
Example Diagram of Logout Strategy
...
Update Email from Sign In user dashboard
A global logout is performed to keep email field in ID Token up to date
Proposal: Will display a message to the user that this operation will log them out of all applications.
https://files.slack.com/files-pri/TBYMZNWH2-F015JJV71RV/global_logout_mockup.pngEdit: Including TennisLink and ServeTennis
Profile Page, change DOB < 13, confirmation, Global Logout
ASM - CSR ends the session, Global Logout
Button in Back Office (End Session, Left Pane) → Must use logout from this button → Global Logout
Nice to Have: WebsiteLogout
(Possible to detect if the user is in ASM group), work needed (20.7?) (All Clients?)
All Clients
Cancel Light Weight Registration
As previously advised, If a user cancels lightweight registration, please perform a local logout
| Info |
|---|
We had previously advised performing a global logout followed by a local logout. The global |
...
Potential Issues
...
logout is now being performed by Lightweight Reg on cancel. Clients will only need to perform the local logout. |