Solved: How to make sure the cookie is destroyed?

Former Member · ‎10-21-2008

We have some users who do not log out th EP7.0 session by clicking the "log off" link.

Instead, they kill the window by clicking the X on the upper-right corner of the window.

We are afraid the cookie will be picked up and used by the next user on the terminal.

How to prevent that ?

Thanks!

Former Member · ‎10-22-2008

Hi Ashley,

I found a SAP Note which you can have a look and see if it help.

1) Note 696294 - Logoff from Portal does not invalidate 3rd-party SSO session

Help.sap

1) Application Logoff Page (checout "Deleting the Authentication in Logoff")

http://help.sap.com/saphelp_nw04s/helpdata/en/fc/04a5421935c511e10000000a1550b0/frameset.htm

SDN Forums

1) Logging off Portal - Cookies/Caching (checkout property ume.logoff.redirect.url to point to an ASP )

2) SSO cookie information persists when logging off (checkout the usage to define the actions for Session Release Agent or for DSM)

For reading and see if its helpful:

3) Portal logoff vs. browser close

4) Accessing Cookies

http://help.sap.com/saphelp_nw2004s/helpdata/en/78/985287c06b11d4ad310000e83539c3/frameset.htm

Ashley, do a search in the forum with "portal logoff cookie" and you will find tons of posts about the topic.

Hope that helps.

Ray

Former Member · ‎10-22-2008

include javascript in masthead to force logoff when they close portal.

check below reference

Koti Reddy

Former Member · ‎10-22-2008

Hi Ashley,

It is always recommended that you click Log Off in the masthead, and not simply close your browser if you want to end your portal session. Closing the browser leaves the portal still working, until it times out.

When working in a browser that supports multiple tabs, such as Internet Explorer 7 or Mozilla Firefox, if you close a tab in which a portal is running, the portal session is saved. If you then open the portal in a new tab, you are already logged on and need to first log off if you wish to log on with different credentials.

When the portal closes it redirects you to either the portal Logon dialog box or an external page that was associated to the portal.

If you are in the portal as an anonymous user, you do not see a Log Offlink in the masthead. In such a case, to terminate your portal session, close the browser.

Regards,

Anagha

How to make sure the cookie is destroyed?

Accepted Solutions (1)

Accepted Solutions (1)

Answers (2)

Answers (2)

Re: Sap Analytics Cloud - Input a Date Parameter i...

Re: Send data from ERP to SAP Integration Suite

Re: ADD ON for ERP 6 SAP ERP 6.0

Re: Update task in RAP model API

Re: What is oauth signature ? in SAP JAM , how to ...