Use this procedure to configure re-log in to a Genero application authenticated by SAML
SSO after an auto logout event.
Note:
The FGLGWS package provides you with a delegation web service for SAML Single sign-on (SSO) that
supports the
PROMPT (for auto logout)
feature. In the example the
PROMPT
is set to use this delegation
service:
<PROMPT Timeout="60" Type="DELEGATE">services/SAMLServiceProvider</PROMPT>
-
Add a
DELEGATE
element in your application configuration
(xcf) file.
This example shows the application configuration for delegation and the auto logout
prompt
feature.
<?xml version="1.0" encoding="UTF-8"?>
<APPLICATION Parent="defaultgwc">
<EXECUTION AllowUnsafeSession="TRUE">
<PATH>$(res.deployment.path)</PATH>
<MODULE>MyApp</MODULE>
<DELEGATE service="services/SAMLServiceProvider" />
</EXECUTION>
<AUTO_LOGOUT>
<TIMEOUT>10</TIMEOUT>
<PROMPT Timeout="60" Type="DELEGATE">services/SAMLServiceProvider</PROMPT>
</AUTO_LOGOUT>
</APPLICATION>
-
Add a
PROMPT
element in the AUTO_LOGOUT
element
The delegation service represents the GAS's SAML SSO Service, which the user-agent will
be redirected to when the user wants to re-log in. The Timeout
represents the number of seconds the user-agent displays a screen or page to notify the
user that a re-log in is required if he wants to continue.
Once the user is authenticated by the service, the user-agent is redirected back to the
GAS to resume the application.