Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Both sides previous revision Previous revision
Next revision
Previous revision
Next revision Both sides next revision
documentation:latest:authssl [2019/08/12 21:53]
cmaudoux ta
documentation:latest:authssl [2019/10/31 14:45]
cmaudoux [SSL by Ajax]
Line 263: Line 263:
 </​note>​ </​note>​
 <​note>​ <​note>​
-Ajax authentication request can be sent to an another URL than Portal URL. To avoid a persistent loop between Portal and a redirection URL (pdata is not removed because domains mismatch), you have to set pdata cookie domain by editing ''​lemonldap-ng.ini''​ in section [portal]:+Ajax authentication request can be sent to an another URL than Portal URL. 
 + 
 +To avoid a persistent loop between Portal and a redirection URL (pdata is not removed because domains mismatch), you have to set pdata cookie domain by editing ''​lemonldap-ng.ini''​ in section [portal]:
  
 <file ini> <file ini>
Line 269: Line 271:
 pdataDomain = example.com pdataDomain = example.com
 </​file>​ </​file>​
 +
 +To avoid a bad/expired token during session upgrading (Reauthentication) if URLs are served by different load balancers, you can force Upgrade tokens to be stored into Global Storage by editing ''​lemonldap-ng.ini''​ in section [portal]:
 +
 +<file ini>
 +[portal]
 +forceGlobalStorageUpgradeOTT = 1
 +</​file>​
 +
 </​note>​ </​note>​
 <note important>​ <note important>​