Using Cookie Reset Functionality in J2EE Agents
The agent allows you to reset certain cookies that might be present in the user’s browser session if the user’s OpenSSO Enterprise session has expired. This feature is controlled by the following configuration properties:
-
Cookie Reset (Tab: SSO, Name: com.sun.identity.agents.config.cookie.reset.enable)
-
Cookies Reset Name List (Tab: SSO, Name: com.sun.identity.agents.config.cookie.reset.name
-
Cookies Reset Domain Map (Tab: SSO, Name: com.sun.identity.agents.config.cookie.reset.domain)
-
Cookies Reset Path Map (Tab: SSO, Name: com.sun.identity.agents.config.cookie.reset.path)
The preceding four properties can be used to specify the exact details of the cookie that should be reset by the agent when a protected resource is accessed without a valid session.
The property labeled Cookies Reset Name List specifies a list of cookie names that will be reset by the agent when necessary. Each entry in this list can correspond to a maximum of one entry in the properties labeled Cookies Reset Domain Map and Cookies Reset Path Map, both of which are used to define the cookie attributes - the domain on which a particular cookie should be set and the path on which it will be set.
When using this feature, ensure that the correct values of the domain and path are specified for every cookie entry in the cookie list. If these values are inappropriate, the result might be that the cookie is not reset in the client browser.
When a cookie entry does not have an associated domain specified in the domain map, it is handled as a server cookie. Similarly, when a cookie entry does not have a corresponding path entry specified, the anticipated cookie path is “/.”
- © 2010, Oracle Corporation and/or its affiliates