Idea Details

Siteminder SPS Mini Cookie support - CA Ticket - 21587069-3

Last activity 06-03-2019 08:21 PM
Anon Anon's profile image
03-20-2015 10:05 AM

Customer would like Siteminder SPS Auth/Az web services to support mini cookie. Per current design, the web services are not aware of any auth scheme defined for Secure Proxy Server (SPS) and it can only generate full SMSESSION cookie.

 

VA had requested this capability as far back as December 2013. This support is needed to help with session management of mobile applications.


Comments

04-18-2017 09:45 AM

I believe we do not have a solution yet to logout mini cookies using the SPS web services. So any idea on how to logout a minicookie session that is being used on a mobile device? Will the traditional logout method work?

04-10-2017 07:35 PM

Previously is was an advantage the that SMSESSION cookie contained all the details for the session, that helped with high availability and quick processing - since there was no central database of sessions and policy servers acted independantly.

 

But now some 15+ years latter, the landscape has changed and even in SSO it is often a requirement to have a session store setup.  Given that it does not seem to far a streach to have a mini SMSESSION cookie, much like the minicookie, that works with a normal webagent, and is used to do a lookup on the centeral session store to get the full SMSESSION/session details. 

 

it would need some consideration, but certainly the minicookie is a good example, in my opinion, of how that could be achieved.

 

Cheers - Mark

01-14-2016 05:46 AM

Thank you for your contribution of an enhancement idea to the CA Community. CA is continually working to improve its software and services to best meet the needs of its customers. Your input is vital to that effort. The CA Single Sign-On Product Management team has reviewed your suggested enhancement. Based on current roadmap priorities and/or the limited amount of community support for this idea, we are not accepting this idea into the product backlog. Therefore, it is being moved to a “Not Planned” status.  

04-28-2015 09:40 AM

Thank you for your contribution of an enhancement idea to the CA Community. CA is continually working to improve its software and services to best meet the needs of its customers.  Your input is vital to that effort.  The CA Single Sign-On Product Management team is reviewing your enhancement suggestion.  The Community will continue to be able to vote on this enhancement idea.

 

03-20-2015 04:07 PM

asastry

 

Just one correction.

 

"generate full SMSESSION cookie".

 

AuthAz WebServices does not generate a SMSession Cookie. Just want to use the correct reference. It would be great if it could generate a SMSession and the same could be used to SSO across.

 

I am sure Chris CBertagnolli would vouch for SMSession support too on AuthAz WS. Plus the enhancement you are requesting.

 

Refer to this thread "Re: Authentication and Authorization Web Service Session Tokens"

 

 

Regards

 

Hubert