OAM 220.127.116.11 : logout does not terminate user sessions in the session table for unified sessions.
(Doc ID 2378207.1)
Last updated on MARCH 23, 2018
Applies to:Oracle Access Manager - Version 18.104.22.168.171017 and later
Information in this document applies to any platform.
On : 22.214.171.124.171017 version, OAM SERVER
With OAM 126.96.36.199 BP12, OAM sessions are not getting cleared on logout in the sessions table.
Cookies are cleared as expected and the user is challenged for credentials as expected when the resource is accessed again.
However the sessions are not cleared in the sessions table and they gets re-used when the user logs in again.
The issue can be reproduced at will with the following steps:
1. access a protected resource and login with user credentials.
3. login to oamconsole and search for sessions for the user
4. session still exists in the session table.
To view full details, sign in with your My Oracle Support account.
Don't have a My Oracle Support account? Click to get started!
In this Document