Support Article
Single Sign-On redirect behavior incorrect
SA-73486
Summary
User configures Single Sign-On (SSO) redirect in the SAMAUTHL authentication service. The redirect does not work on the JavaScript pop up or Asynchronous JavaScript and XML (AJAX) request on timeout. The redirect works only on manual web page refresh.
Error Messages
Not Applicable
Steps to Reproduce
Leave the system idle for more than the timeout time configured in the access group.
Root Cause
This behavior is as per the Pega product design.
Resolution
Here’s the explanation for the reported behavior:
On timeout Pega does not make a call to IdP (Identity Provider) for logout. It stops the requestor session and deletes the session data from the cache. It sends another authentication request to IdP to log in again when the user starts working.
Published February 22, 2019 - Updated October 8, 2020
Have a question? Get answers now.
Visit the Collaboration Center to ask questions, engage in discussions, share ideas, and help others.