clear-cookie-jar-on-reauth

clear-cookie-jar-on-reauth

Whether to clear cookie jar when a new credential is added to a session.
clear-cookie-jar-on-reauth = {true | false}

Description

WebSEAL cookie jar can be configured to manage cookies sent to junctions which are stored in the user session. These cookies should be cleared for all junctions whenever a re-authentication or step-up authentication operation takes place. In addition, when a new Federation Runtime token is sent to a Federation Runtime junction, the cookies for the junction should be cleared. This backwards compatibility configuration item can be used to disable this behavior so that cookie jar is not cleared.
Options

true Clear the cookie jar when a re-authentication or step-up authentication operation takes place.
false Do not clear the cookie jar when a re-authentication or step-up authentication operation takes place.

Usage: This stanza entry is optional.
Default value:
true

Example:
clear-cookie-jar-on-reauth = true

Parent topic: [server] stanza

true	Clear the cookie jar when a re-authentication or step-up authentication operation takes place.
false	Do not clear the cookie jar when a re-authentication or step-up authentication operation takes place.