You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
{{ message }}
This repository has been archived by the owner on Sep 18, 2021. It is now read-only.
What identity server options do I need to set to force the user to sign in on every session? I'm hosting an Angular app using the OpenID Connect implicit client flow.
I've set CookieOptions to new CookieOptions { IsPersistent = false }, however I'm testing on IIS Express, and so the identity server and Angular app are both on localhost, with different ports, so I think this isn't helping either (as the idsrv cookie is shared between both applications).
I haven't tried to sign out of the IdP through the end_session_endpoint URI exposed at the discovery endpoint (connect/endsession), is this handled? However, presumably I should never need to do this if the idsrv cookie is not written in the first place (is this correct?).
Thanks
The text was updated successfully, but these errors were encountered:
Hi,
What identity server options do I need to set to force the user to sign in on every session? I'm hosting an Angular app using the OpenID Connect implicit client flow.
I've set CookieOptions to new CookieOptions { IsPersistent = false }, however I'm testing on IIS Express, and so the identity server and Angular app are both on localhost, with different ports, so I think this isn't helping either (as the idsrv cookie is shared between both applications).
I haven't tried to sign out of the IdP through the end_session_endpoint URI exposed at the discovery endpoint (connect/endsession), is this handled? However, presumably I should never need to do this if the idsrv cookie is not written in the first place (is this correct?).
Thanks
The text was updated successfully, but these errors were encountered: