Below is the requirement by one of the downstream SSO enabled application
1. SSO has been enabled for the web application through CA Siteminder
2. Idle timeout set for the application is 15 minutes
3. The requirement is that the web application needs to show a warning message to the end user if the user is inactive for more than 10 minutes.
my question - How can the web application know that the session (SMSESSION) is inactive for 10 minutes so that the web application can show a warning message.
Please note that the web application is a downstream / cross commit application and they do not have access to the policy servers.
Please let me know if you need any further details on the requirement and let me know the way to achieve this requirement. Thank you for your insights in advance.
Please look at this thread, we discussed this earlier in the community: