Skip to end of metadata
Go to start of metadata

You are viewing an old version of this page. View the current version.

Compare with Current View Page History

« Previous Version 13 Next »

The selected root page could not be found.

Change Log

WayGee

  • Initial Creation

Related Documents

Confluence Link

Unable to render {include} The included page could not be found.

6/24/20 This document is undergoing management and technical review and is not yet ready for public consumption.

Important - Please implement the new logout strategy outlined below in your applications.

New Local Logout Requirement
A new logout requirement was determined by the business, whereby logging out of an application should not affect other logged in applications. In other words, applications should perform a local logout only. Global Logouts should not be used. If you have a scenario for global logout, please contact us in the slack or support channels. The directions for logout have been updated.

Unique session or cookie identifiers
In addition, there should be a unique session id (or unique cookie name) per tab. In the past, we advised that cookies should be based on your clientID. The new change is that the naming convention should be unique, so we recommend clientID + some unique string. The directions for cookie naming have been updated.

Impact on Cognito SSO Cookie
With applications performing local application logouts only, the Cognito SSO cookie will be deleted when the local application logout is performed.

Example Diagram of Logout Strategy

Known Use Cases for Global Logout

USTA.com

  • Update Email from Sign In user dashboard

  • Profile Page, change DOB < 13, confirmation, Global Logout

  • ASM - CSR ends the session, Global Logout

    • Button in Back Office (End Session, Left Pane) → Must use logout from this button → Global Logout

      • Nice to Have: Website Logout (Possible to detect if the user is in ASM group), work needed (20.7?) (All Clients?)

All Clients

  • Cancel Light Weight Registration

    • As previously advised, If a user cancels lightweight registration, please perform a global logout.

Potential Issues

  • Multiple Tabs Cognito internal cookies (retest this, not with Toy App)

  • No labels