Authorize re-log in with SAML SSO

Use this procedure to configure re-log in to a Genero application authenticated by SAML SSO after an auto logout event.

Note: The FGLGWS package provides you with a delegation Web service for SAML Single sign-on (SSO) that supports the PROMPT (for auto logout) feature. In the example the PROMPT is set to use this delegation service:
<PROMPT Timeout="60" Type="DELEGATE">services/SAMLServiceProvider</PROMPT>
  1. Add a DELEGATE element in your application configuration (xcf) file.
    This example shows the application configuration for delegation and the auto logout prompt feature.
    <?xml version="1.0" encoding="UTF-8"?>
    <APPLICATION Parent="defaultgwc">
      <EXECUTION AllowUnsafeSession="TRUE">
    	<PATH>$(res.deployment.path)</PATH>
    	<MODULE>MyApp</MODULE>
           <DELEGATE service="services/SAMLServiceProvider" />      
      </EXECUTION>
      <AUTO_LOGOUT>
          <TIMEOUT>10</TIMEOUT>
          <PROMPT Timeout="60" Type="DELEGATE">services/SAMLServiceProvider</PROMPT>
      </AUTO_LOGOUT>
    </APPLICATION>
  2. Add a PROMPT element in the AUTO_LOGOUT element

    The delegation service represents the GAS's SAML SSO Service, which the user-agent will be redirected to when the user wants to re-log in. The Timeout represents the number of seconds the user-agent displays a screen or page to notify the user that a re-log in is required if he wants to continue.

    Once the user is authenticated by the service, the user-agent is redirected back to the GAS to resume the application.