QUESTION:
I have configured IdM for SSO with Access Manager. How do I tell IdM to destroy the Access Manager Token during logout?
ANSWER:
You need to modify the IdM logout implementation so that it redirects to Access
Manager logout. For a standard IdM install, this involves three files:
- logout.html (located in IdM base dir)
- userLogout.jsp (end-user interface logout, user/userLogout.jsp)
- logout.jsp (admin interface logout, logout.jsp)
For logout.html, add the following (after <body> tag):
<!-- logout of AM -->
<script>
document.location.href="http://my-appserver-instance:80/amserver/UI/Logout";
</script>
For userLogout.jsp and logout.jsp, change the redirect so that it goes to your
Access Manager logout:
response.sendRedirect(p.encodeRedirectURL("http://my-appserver instance:80/amserver/UI/Logout"));
No comments:
Post a Comment