cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Community Tip - Help us improve the PTC Community by taking this short Community Survey! X

Terminate/End SSO user session on Logout

Go to solution
TanmeyTWX
17-Peridot
17-Peridot
‎Dec 15, 2022 04:14 AM
‎Dec 15, 2022 04:14 AM

Terminate/End SSO user session on Logout

Hi Experts,

 

Please suggest a way to terminate user session from browser once the Logout is triggered.

The user is being authenticated through SSO and want the user to click a button(probably logout) and should be redirected to login again to enter the Azure AD credentials instead of re-login automatically because the session is still alive.

 

I have already tried TerminateUserSession resource but that works only for Administrators group members and I have non-administrator custom user groups with specific permissions.

 

Note: Don't want to redirect to a different mashup/screen as a workaround.

 

TIA.

Labels:
0 Kudos
Notify Moderator
1 ACCEPTED SOLUTION

Accepted Solutions
nmutter
14-Alexandrite
14-Alexandrite
(To:TanmeyTWX)
‎Dec 18, 2022 07:29 AM
‎Dec 18, 2022 07:29 AM

You somehow need to trigger the logout in your IdP as well. There is an older PTC article stating you need to call the "Singe logout url" of your Idp: How to logout from ThingWorx after signing in with SSO 

I did not yet try to configure SingleLogout. If you find out more I would be happy if you can share details.

View solution in original post

0 Kudos
Notify Moderator
5 REPLIES 5
PaiChung
22-Sapphire I
22-Sapphire I
(To:TanmeyTWX)
‎Dec 16, 2022 08:44 AM
‎Dec 16, 2022 08:44 AM

TerminateUserSession would accomplish the same thing as the regular Logout.

Your challenge is the fact that Azure AD is not receiving a termination and is holding the session for xx minutes still.

Strange though, because even when using AD that shouldn't be the case, might be a side effect of how your SSO setup works?

I can understand it, if your logout isn't an actual Thingworx logout or if users just close the browser.

What 'Logout' are you using?

0 Kudos
Notify Moderator
TanmeyTWX
17-Peridot
17-Peridot
(To:PaiChung)
‎Dec 18, 2022 03:51 AM
‎Dec 18, 2022 03:51 AM

Pai,

 

I have configured SSO as mentioned in this PTC guide. SSO with Thingworx.

 

I have used Logout Function ,part of Mashup functions not widget.

0 Kudos
Notify Moderator
nmutter
14-Alexandrite
14-Alexandrite
(To:TanmeyTWX)
‎Dec 18, 2022 07:29 AM
‎Dec 18, 2022 07:29 AM

You somehow need to trigger the logout in your IdP as well. There is an older PTC article stating you need to call the "Singe logout url" of your Idp: How to logout from ThingWorx after signing in with SSO 

I did not yet try to configure SingleLogout. If you find out more I would be happy if you can share details.

0 Kudos
Notify Moderator
TanmeyTWX
17-Peridot
17-Peridot
(To:nmutter)
‎Dec 22, 2022 04:03 AM
‎Dec 22, 2022 04:03 AM

Hi, Tried Single logout url also but it doesn't end the session in a way. Reloading or hitting browser back button is getting the user logged-in again

0 Kudos
Notify Moderator
TanmeyTWX
17-Peridot
17-Peridot
(To:TanmeyTWX)
‎Dec 26, 2022 01:27 AM
‎Dec 26, 2022 01:27 AM

Hi,

I have tried with .srf single logout url and seems to be working. Thanks!

0 Kudos
Notify Moderator
Top Tags