Hi all,
We have just set up trust between two portals.And we want to archive this:
One user log on a portal(consumer) and he can logon another(producer) with logon ticket.
But one problem is:
One user log on consumer and access the producer.Then he log off consumer without closing the browser.another user log on consumer,and when he enter the producer.The cookie in producer is the former user's information.
When somebody logoff the portal. The logon ticket doesn't expire.Then another user log on. The cookie never updates?
OK..One can close the browser to kill the cookie.But this is such a potential security problem.
Is there something to explain this?
Is there any idea to solve this?
best regards,
delma
Message was edited by:
delma ma