From the information you provided, I understand you need more information related to authentication logout and session timeout for ALB.
When a user that has been authenticated needs to log out, the application should invalidate the session cookie by setting expiry to -1 but also redirect the client to the IdP logout endpoint. This needs to be done by your application.
Make sure the code consists of:
- Invalidate the AWSELBAuthSessionCookie-0 and AWSELBAuthSessionCookie-1 cookie by setting expiration time to -1, or just clear both of them.
- Redirect the user to idp logout endpoint
You should be able to set the expiry to -1 with set-cookie.
I hope you find this helpful.
The web acl is associated with the Application Load Balancer in the AWS region. After a few hours, it is found that the association has been cancelledasked a month ago
Cognito (with google) + Application Load Balancer = 414 Request-URI Too Largeasked 3 months ago
AWS Load Balancer Controller deployment to force creation of application Load Balancer?asked 3 months ago
Application Load Balancer throws 503 in a post requestasked 4 days ago
How to give users a limited access time to a web app running on ECS/EC2asked 3 months ago
I am trying to log in through the Cognito hosted UI. I don't see such a function in the example, what should I do?Accepted Answerasked a month ago
Cognito with Load Balancerasked 5 months ago
How to Modify AWSELBAuthSessionCookie to Log Off Userasked 2 months ago
Logout from an ALB session that is authenticated by Cognitoasked 3 years ago
Application Load Balancer doesn't send user claims in HTTP headersAccepted Answerasked 3 years ago