SSO - LogOff - Session invalidate

Former Member · ‎08-30-2014

HI Experts,

We have integrated SAP Sourcing (its Java stack) into SAP Portal and have set up SSO.

We have noticed that on LogOff from Portal, the Sourcing session doesn't get invalidated. If I use the same browser session and login again into portal with a different user, the previous session from Sourcing still shows up.

When I open Portal in a new browser session, we don't face this issue. But I suspect, the sourcing session is still alive and I want to be able to invalidate this.

In ABAP systems, we do this to enable backend session invalidation.

Activate this on ABAP SICF - /sap/public/bc/icf/logoff

And Enable this property: " ABAP Security Sessions Enabled " set to " Yes "

What are the equivalent steps in Java Stack?

How do I logoff from Sourcing when I logoff from Portal? Your suggestions are greatly appreciated.

Thanks,

Reshma

Former Member · ‎08-31-2014

Hi Reshma,

If you will implement note
1885476, the DSM application will send termination to the application in that
way:

When
navigating away -> request to the application with
sapsessioncommand=USR_ABORT
When
closing the window or refreshing it -> request to the application with
sapsessioncommand=USR_ABORT
When
logging off from the portal -> request to the application with
sapsessioncommand=USR_LOGOFF if you will not set the property
"ABSP security sessions" on the system and request to the system
where the application is located with suffix /icf/logoff.

Best regards,

Etay

SSO - LogOff - Session invalidate

Accepted Solutions (0)

Answers (1)

Answers (1)

Re: CAP authentication

Re: Has the SAP Master Data Integration service be...

Infix filters in CAP Node.js not working

Re: LTMOM : Rule xxx is corrupt : How to find the ...

Re: DRC e-Cockpit Add a New Button