GuidesiMIS ProfessionaliMIS EnterpriseClient Support
HomeGuidesAPI ReferenceChangelogDiscussions
GuidesiMIS ProfessionaliMIS EnterpriseClient SupportLog In

Discussions

Ask a Question
Back to All

Forms authentication cookies

over 2 years ago by Stu Lee

I have successfully set up SSO between a .NET site and a RiSE iMIS site, using Forms Authentication cookies.

ie. Using different subdomains of the same parent domain and ensuring both sites have the same machine key.

www.domain.com (website)
portal.domain.com (imis)

The iMIS Membership service method LoginUserAndProvideCookies() is called to get the cookies and these are set for *.domain.com

This all works fine. The user is logged into iMIS by setting those cookies.

However, if the user clicks the Sign out link in the iMIS portal, they aren't signed out of iMIS.

From my testing I can see an iMIS logout will delete the
portal.domain.com "Login" cookie, but won't delete the *.domain.com "Login" cookie.

Any ideas what could be causing this?