Enable user session ID management

Enable user session ID management

The user-session-ids stanza entry in the [session] stanza of the WebSEAL configuration file allows us to enable and disable the creation of a unique user session ID as an extended attribute in the credential of each client making a request. Default is "no" (disabled):
[session] user-session-ids = no

To enable the creation of unique user session IDs, set:
[session] user-session-ids = yes

The unique user session ID is stored in a user's credential as an extended attribute with a name and value:
(credential attribute) credential attribute credential attributetagvalue_user_session_id = user-session-id-string

This extended attribute name always appears with a “tagvalue_” prefix to prevent any conflicts with other existing information in the credential.
Parent topic: User session management for back-end servers