Al usar AWS re:Post, aceptas las AWS re:Post Términos de uso
AWS re:Postre:Post

Logout from an ALB session that is authenticated by Cognito

1

Hello!
I'm failing with logging out from a Cognito authenticated ALB session. The authentication itself works perfectly.
I want to logout the user from the session and understand I have to delete/expire the cookie (AWSELBAuthSessionCookie-0,...) and redirect to the /logout endpoint. I also understand that the auth session cookie is HttpOnly and must be deleted server-side.
The authenticated application is hosted on a subdomain "a.example.com". My various server-side cookie deletion attempts failed. I had for example the following response header set:

"set-cookie: AWSELBAuthSessionCookie-0=;Domain=a.example.com;Path=/;Max-Age=0;Secure"

But none of my set-cookie headers did actually delete the auth session cookie.
Any ideas how the cookie can be deleted/expired?
Cheers Fabian

Temas
Redes y entrega de contenido
Etiquetas
Balanceo de carga elástica
Idioma
English
fabian-hh
preguntada hace 5 años1855 visualizaciones
1 Respuesta
0

What did the trick is omitting the domain (although in my case the authentication was setup for a hostname with a subdomain).
This worked for me:

Set-Cookie "AWSELBAuthSessionCookie-0=deleted;path=/;expires=Thu, 01 Jan 1970 00:00:00 GMT;"
fabian-hh
respondido hace 5 años

No has iniciado sesión. Iniciar sesión para publicar una respuesta.

Una buena respuesta responde claramente a la pregunta, proporciona comentarios constructivos y fomenta el crecimiento profesional en la persona que hace la pregunta.

Pautas para responder preguntas

Contenido relevante