Join the #BuildWithBuildAgent Challenge! Get recognized, earn exclusive swag, and inspire the ServiceNow Community with what you can build using Build Agent.  Join the Challenge.

SAML2 session timeout settings overwritten

sychan
Kilo Explorer

‎03-09-2012 05:24 PM

I am trying to customize the session timeouts per the description here:

http://wiki.service-now.com/index.php?title=Installation_Exits

The appropriate place seemed to be the Process handler in the SAML2 login script. I've added in the code to set the session timeout based on source IP address, and it all seems to run without issues. But the timeouts are not being honored. What I see in the logs is that the original session is being destroyed and a new one replaces it, and at that time another session timeout is applied (apparently from the glide.ui.session_timeout property).

03/07/12 09:35:52 (082) 2D569FBA00AC2000545B40D65BDAC928 *** Script: Here is where we would set the session duration for client IP 128.55.19.238
03/07/12 09:35:52 (085) 2D569FBA00AC2000545B40D65BDAC928 *** Script: IP Address matches 128.55.* - setting 10 hour session duration
03/07/12 09:35:52 (095) 2D569FBA00AC2000545B40D65BDAC928 Session destroyed: 2D569FBA00AC2000545B40D65BDAC928, (not logged in), created Wed Mar 07 09:35:38 PST 2012
03/07/12 09:35:52 (095) 2D569FBA00AC2000545B40D65BDAC928 Inactivity time changed from 1800 seconds to 7200 seconds

Is there a way to propagate the desired session timeout past this session recreation? I tried setting the glide.ui.session_timeout property from within the login script, but it doesn't seem to be honored.

Thanks,
Steve

0 Helpfuls
  • 4,947 Views
12 REPLIES 12

john_andersen
Tera Guru
In response to sychan

‎03-13-2012 05:12 AM

I don't know that. I don't think you are exceeding the max value if there is one.

I would suggest two things in your case
1) Test with a 30 second value in your installation exit (this will help disregard issues with the longer timeout value you are using)
2) Test with your installation exit timeout being shorter than your global timeout property just to make sure that the global timeout doesn't win over the personal timeout when the global expires.

Where it seems to work fine for me, it is hard to provide much else for information on my end. I think those test are your next best step.


0 Helpfuls

Gaurav Bajaj
Mega Sage
In response to sychan

‎11-30-2016 04:40 AM

Hello,



I am facing similar issue here as the session timeout set through installation exit is always overwritten by the default timeout(if property for timeout is absent) or the


session timeout property.


i checked it in the session cookies in browser console as well.


Please help me if someone got this issue rectified on their end.



Thanks


Gaurav Bajaj


0 Helpfuls

Community Alums
Not applicable
In response to Gaurav Bajaj

‎12-07-2016 09:42 AM

If you're using SAML 2.0 you should set glide.ui.rotate_sessions to false


0 Helpfuls