Forum Discussion
Samir_Jha_52506
Noctilucent
NoctilucentKill session after Logout APM
Hi Expert,
I need your help to solve issue. I have configured application through APM with simple access policy(allow & deny). Requirement is once user will logoff from application, their session should be killed. Is there any way to kill user session through iRule. Please advice if below iRule is correct?
when HTTP_REQUEST {
log local0. "[HTTP::uri]"
if { [HTTP::uri] equals "/login" } {
after 2000 { ACCESS::session remove }
HTTP::redirect "/xyz/logh.aspx"
}
}
4 Replies
Hi,
There is a logout feature within APM in the Access Profile properties. Just define the Logout URI you need (i.e /logout.php /logoff.html ...) and APM will kill the session once its sees these after a short delay (default 5s but customizable) to allow a short time to display subsequent pages after the logout process (i.e /loggedout.php 'Thank you for logging out, please come back' or similar.)
Salim
Samir_Jha_52506any idea, where to add logout profile. Start-->Loginpage-- Auth--Sucess--> allow Auth --->fallback--> deny- This is not within the Visual Policy Editor (VPE) but in the main page of your Access Profile.
Amit_Grover_171Nimbostratus
Hi,
Try this
when HTTP_REQUEST { if { [HTTP::uri] equals "/logoff" } { ACCESS::session remove } }/Regards Amit Grover
