Tuesday, December 2, 2014

OAM WNA Logout Issue

Users won't be able to Logout using WNA Authentication:

  1. This is expected behavior.
  2. The issue is with the Browser and the basic authn.
  3. The browser stores the basicauthn credentials, so even if you log out of OAM, and it cookies are deleted/removed, when you go to authenticate again, the browser passes the basic authn credentials that were provided earlier in the browse session.
  4. The only way to stop this is to close the browser.
  5. This can be confirmed by viewing the http headers
  6. The issue is not specific to OAM or Kerberos autn, but to the basic authn and the browser.
  7. The same issue occurs if the Kerberos authentication scheme or with the Basic Scheme.

Source : Oracle

No comments:

Post a Comment

Other Posts