F5 APM SSO cookie caching by Chrome browser.

venkatesh1 · ‎12-Aug-2019

Hi All,

We have F5 VS were using for APM SSO for Jboss web appication which is working fine with Http form based SSO.

The Problem is when we click the logout option in Jboss application, chrome browser doesnt sent the logout messages to APM to clear the session instead of it will cache the webpage and sends the logout screen from cache.

If the user login to Jboss application before the access policy timeout, then users are getting error message.

We need help to fix this browser caching issue.

Sajid · ‎12-Aug-2019

Have to defined logout uri in the access profile?

Access ›› Profiles / Policies : Access Profiles (Per-Session Policies) ›› Profile_Name

Configurations

Logout URI Include

**************************

you can use iRule to force logout with removing session cookies.

when HTTP_REQUEST {

if {[HTTP::uri] contains "/Logout"}{

ACCESS::session remove

#HTTP::respond 302 Location "https://[HTTP::host]/vdesk/hangup.php3"

}

venkatesh1 · ‎13-Aug-2019

Hi Sajid, Thank you for the update.

We had already tried configuring logout URI in access policy but still its not working. We had verified the APM logs after clicking the application logout option but we are not receiving any logout messages from chrome browser to F5 APM.

Its working fine with Internet Explorer. Only problem with chrome and firefox browsers. These browsers are sending the logout pages from stored cache and not sending any request to APM to close the session.

JG-SEN25 · ‎24-Apr-2023

I'm wondering if you ever found a fix for this issue? I'm facing a similar issue. Thank you

DevCentral

F5 APM SSO cookie caching by Chrome browser.

Khoros Kudos Award 2022