I have configured Idle Timeout Page in application SSO policy (
IdleTimeoutURL) and added same in IgnoreURI parameter. Application successfully redirecting to the url which i have configured in Idle Timeout Page when user refresh the page after Idle Timeout reached.
App team have configured application login link (which is protected by SSO) in the Idle Timeout Page. Once user clicks on the link it's redirecting to the app url and once again it's redirecting to COOKIEPROVIDER and same happening always.
We are thinking that master cookie was not cleared after idle timeout reached.
App url : ex : a1.abc.com
SSO Login URL : a2.xyz.com
COOKIEPROVIDER : a2.xyz.com
COOKIE DOMAIN : .abc.com
https://a1.abc.com/idleTimeout.html1)
https://a1.abc.com/2)
https://a2.xyz.com/siteminderagent/smmakecookie.ccc?SMSESSION=LOGOFF&PERSIST=$SM$Thu, 06 Jun 2019 13:21:51 GMT&TARGET=$SM$https://a1.abc.com/idleTimeout.html
3)
https://a1.abc.com/idleTimeout.html1)
https://a1.abc.com/2)
https://a2.xyz.com/siteminderagent/smmakecookie.ccc?SMSESSION=LOGOFF&PERSIST=$SM$Thu, 06 Jun 2019 13:21:51 GMT&TARGET=$SM$https://a1.abc.com/idleTimeout.html
3)
https://a1.abc.com/idleTimeout.html1)
https://a1.abc.com/2)
https://a2.xyz.com/siteminderagent/smmakecookie.ccc?SMSESSION=LOGOFF&PERSIST=$SM$Thu, 06 Jun 2019 13:21:51 GMT&TARGET=$SM$https://a1.abc.com/idleTimeout.html
3) https://a1.abc.com/idleTimeout.html