We'd love to hear from you! Provide  feedback  to earn a badge today. Take our quick survey
You're almost there! Please answer a few more questions for access to the Applications content. Complete registration
Interested in joining? Complete your registration by providing Areas of Interest here. Register

Sessions Are Not Terminated on Log Out

Received Response
21
Views
13
Comments

Summary:

Sessions Are Not Terminated on Log Out

Content (required):

After logout, the user's previous session is still active.

I have added a logout action in the action chain to logout the user from the application. Logout is working fine but the session is not terminated on the server side fully.

During testing we identified the VBCS application does not properly terminate a session when using the logout functionality. This allowed for captured requests to be replayed until the session timed out on the server side.

Is there a way to terminate the session on the server side as well?

Howdy, Stranger!

Log In

To view full details, sign in.

Register

Don't have an account? Click here to get started!