Skip to Content
0
Former Member
Feb 27, 2007 at 03:06 AM

problem about logon ticket cookie

195 Views

Hi all,

We have just set up trust between two portals.And we want to archive this:

One user log on a portal(consumer) and he can logon another(producer) with logon ticket.

But one problem is:

One user log on consumer and access the producer.Then he log off consumer without closing the browser.another user log on consumer,and when he enter the producer.The cookie in producer is the former user's information.

When somebody logoff the portal. The logon ticket doesn't expire.Then another user log on. The cookie never updates?

OK..One can close the browser to kill the cookie.But this is such a potential security problem.

Is there something to explain this?

Is there any idea to solve this?

best regards,

delma

Message was edited by:

delma ma