SSO Integration Verse 3.2 with Sametime 12.0.1

HCL Sametime Sametime Forum
, ,
1

hello,

i have installed and configured HCL Verse 3.2 on top domino 12.0.2 and integration with sametime 12.0.1
sso using ltpa token works well.

my problem is when verse user logout, sametime chat session (sametimeJwt cookie) still remain, even when i drop the browser.

how do i fix the problem, need help

many thanks

2

Hello Tommy,

The Sametime issued JWT token is separate and managed by the Sametime environment, so simply logging out of Verse will not log the user out of Sametime. JWT tokens also have a refresh interval which prevents the user from having to log in as frequently. Perhaps you can configure the JWT token refresh to better suit your needs? I believe defaults are for 30 days.

https://opensource.hcltechsw.com/sametime-doc/v1202/admin/control_validity_length.html

If you have any difficulty please open a case so that we can properly assist you.

Thanks,

Casey

HCLSoftware

3

Sorry, I gave you the refresh interval setting. There are two settings. One is how frequently to refresh the JWT token automatically. The second one is how long the JWT is valid for, or the expiration of the JWT token. Use 

JWT_ACCESS_DURATION_MINUTES=minutes_token_valid

You can set yours to match the LTPA expiration if desired. The documentation for that is here:

Docker: https://opensource.hcltechsw.com/sametime-doc/v1202/admin/t_configure_ltpa_duration_docker.html

Kubernetes: https://opensource.hcltechsw.com/sametime-doc/v1202/admin/t_configure_ltpa_duration_k8s.html

You also want to use the one I referenced in the first post to prevent the server from automatically extending the JWT validity. 

JWT_REFRESH_DURATION_DAYS=number of days

4

hi Casey,

in .env i have set JWT_ACCESS_DURATION_MINUTES=60 (match the LTPA expiration)

in docker-compose.yml I have set JWT_REFRESH_DURATION_DAYS=0

here is my situation,

when i use iNotes webmail ( integration with sametime)

iNotes.png1352×854 79.3 KB

when i click inotes logout button, sametimeJwt token and LtpaToken2 are deleted, (both webmail and sametime chat are logout)

but, when i use Verse on Prem ( integration with sametime)

verse.png1298×955 74.6 KB

then i click Verse logout button, only LtpaToken2 is deleted, sametimeJwt token was not deleted

is there a way to configure verse logout button ?