Deepika Davuluri Posted June 4, 2019 Share Posted June 4, 2019 I have embedded spotfire analysis into a Django application and using an external authentication in spotfire server 10.0.0. Now I need to invalidate session (logout) in Django. I have tried hitting '/spotfire/logout.jsp', but no luck. Can anyone assist me Link to comment Share on other sites More sharing options...
Shandilya Peddi Posted June 4, 2019 Share Posted June 4, 2019 Are you using JavaScript API to embed the analysis, if so you can try the Application.Logout() to logout the user, https://docs.tibco.com/pub/sfire_dev/area/doc/api/TIB_sfire_Web_Player_JavaScript_API_Reference/html/T_spotfire_webPlayer_Application.htm If not along with hitting "/spotfire/logout.jsp" set the "JSESSIONID" cookie to null and see if it helps. Something like Set-Cookie: JSESSIONID=""; Path=/spotfire/; HttpOnly. This should invalidate the user session completely. Link to comment Share on other sites More sharing options...
Deepika Davuluri Posted June 4, 2019 Author Share Posted June 4, 2019 @shandilya I have tried Application.logout(). The issue I am currently facing is even I hit "/spotfire/logout.jsp" url or by using Application.logout(), the JSESSIONID is being updated and when new user logs in It is not hitting my Authentication, behalf of that it is using the updated JSESSIONID. I have also tried to set empty value to cookie, but as it is HttpOnly cookie I am unable to modify it from javascript Link to comment Share on other sites More sharing options...
Recommended Posts
Create an account or sign in to comment
You need to be a member in order to leave a comment
Create an account
Sign up for a new account in our community. It's easy!
Register a new accountSign in
Already have an account? Sign in here.
Sign In Now