Skip to content

User session

In this section we will cover how user's session is managed across all Sequel's products. It is not in the scope of this section to cover single sign-on with external providers, this is covered in the federation gateway sections.

All features described here relays on the user web component.

User's session web component

The user's session web component provide three functionalities:

  • feedback to the user about the current logged account.
  • useful links.
  • advanced user experience features like: single sign-on, single sign-out and inactive session detection.

You can know when this component is available if the application has below component:

authN-user-web-component.png

See User Session Avatar for more information about implementation.

Single sign-on

Single sign-on (SSO) is a property of access control of multiple related, yet independent, software systems. With this property, a user logs in with a single ID and password to gain access to any of several related systems.

For all Sequel's products integrated with the Security Service, once logged from one we can access others without authenticating again. Even more, if we have multiple tabs of the same browser session open, where different Sequel's products are asking the user for credentials, if we log into one of them we will log automatically in all others tabs. This feature is the automatic SSO that is available when all products are installed under the same subdomain.

Single sign-out

Conversely, single sign-out is the property whereby a single action of signing out terminates access to multiple software systems. This feature is available just for Sequel's products using the SSO and deployed in the same subdomain.

Inactive session

The inactive session detection feature allows to automatically force a single sign-out to those inactive sessions.

The inactive session works with two thresholds:

  • inactivity time: Inactive time which will log out the user (in minutes). Must be higher than Warn inactivity time, minimum value is 5.
  • warn inactivity time: Minutes before the log out which will warn the user about its inactivity (in minutes). Must be lower than Inactivity time or five minutes, minimum value is 1 minute

authN-inactive-session-warn.png

Configure it from Administration website, at Configuration section.

authN-inactive-session-configuration.png

Warning

Changing these values will not immediately change values for the users. Logged users need to log out to receive the new settings. In addition, Authentication caches this configuration for some time, so it will take some time to renew the values.