Reputation: 602
Single Sign On SSO - Logout Issue
We are using Single Sign On service provided by a trusted partner. Our application is developed using asp.net mvc 5 framework.
We are facing issue with logout operation.This is our scenario.
- The user clicks on the Login link, the request is redirected to the trusted partner site and redirected back to our site with authentication ticket if the provided credential are valid.
- User performs operations in our site
- when user clicks on the Logout button we are clearing our application session and cookie values and we redirect them to the home page.
- The home page shows Login link, the request is redirected to the trusted partner site and immediately returns to our site with a valid authentication ticket.
Is it possible without making any change in the partner site to force the user to re-enter the credentials?
Upvotes: 0
Views: 1027
Answers (1)
Reputation: 1708
The whole point of Single-Sign on is that the user does not need to re-enter credentials for logging into your site. The authentication is handled by your trusted partner site.
As long as your user is signed into your trusted partner site, the site will always return an authenticated ticket. The only way to force the user to enter credentials is to log them off from the trusted partner site as well. Maybe your trusted partner site exposes the API to log users off as well or re-authenticate them?
Upvotes: 1
Related Questions
- MVC AuthenticationManager.SignOut() is not signing out
- Identity Server 4 : Proper logout from MVC Client
- Forms Authentication SSO Logout Issue due to duplicate cookie
- SSO (Single sign on ) in MVC
- Logout in Single Sign On with WIF
- Single Sign On & Sign Out Problem in ASP.NET
- ASP.Net MVC app logout not completely logging out
- SingleSignOn (SSO) forms authentication logout
- Single Sign-on SignOut problem : FormsAuthentication.SignOut() is not working
- ASP.NET Single Sign On Issues