IBM Security Verify Access for Web WebSEAL clean-ecsso-urls-for-failover stanza entry

clean-ecsso-urls-for-failover

Use the clean-ecsso-urls-for-failover stanza entry to control whether the URL that WebSEAL sends during failover authentication includes query arguments that contain the PD-VFHOST and PD-VF tokens.

clean-ecsso-urls-for-failover = {yes|no}

Description

We can enable Failover Authentication and eCSSO in the environment. During failover authentication, if a user was originally authenticated using eCSSO, WebSEAL updates the URL that it sends to the back-end server. WebSEAL sends PD-VFHOST and PD-VF tokens as query arguments, along with the original URL.
Use the clean-ecsso-urls-for-failover configuration entry to control whether these tokens are removed from the URL.
Options

yes The query arguments that contain the PD-VFHOST and PD-VF tokens are removed from the URL.
no The query arguments that contain the PD-VFHOST and PD-VF tokens are not removed from the URL.

Usage:
This stanza entry is optional.
Default: no
Example:
clean-ecsso-urls-for-failover = no

Parent topic: [failover] stanza

yes	The query arguments that contain the PD-VFHOST and PD-VF tokens are removed from the URL.
no	The query arguments that contain the PD-VFHOST and PD-VF tokens are not removed from the URL.