Single Sign Out

Zack Wilson shared this question 4 months ago
Answered

Is there a way to sign out of Yellowfin when a person "signs out" of the application Yellowfin is embedded in. In other words, if a person uses SSO (with Yellowfin embedded), is there a way to in turn sign them out (of Yellowfin) when they sign out of the application?


Thanks,

Zack

Comments (9)

photo
1

HI Zack,

Thanks for reaching out to support with your question. Let me double check with our integration specialist on this, but I believe that's how it should work out of the box.... are you using a web service to call the SSO as detailed here?

https://wiki.yellowfinbi.com/display/yfcurrent/Single+Sign-On

I found a developer task in our system - "Allow logout page to be specified on SSO service" that seems to indicate this is possible with SSO; you may an additional parameter in the web service call. Please compare your jsp with the attachment to see if you have this parameter, as the task is marked as "fixed" -

Use the attached JSP to test this task.  ws_admin_singlesignon.jsp

On line 32, is the page that you want to the user to logout to. Currently set to "/info.jsp"

If you login with the SSO page, and logout, it will take you to the specified page.

The link needs to start with "/" and be a local page.

I will verify this, our SSO guy can be busy, but you may get a quick answer if you have any consulting calls coming up!

Thanks,

Eric

photo
1

Hi Zack,

Hope all is well with you. Just wanted to check in to see if you had a chance to make use of my reply here?

Thanks,

Eric

photo
1

Hey Eric,

We have looked at it... I have to double check with my web developer. But, I believe it is still not killing the YF session on logout. He is using PHP, if that helps at all... Also, just to make sure we are on the same "page" (bah dum ching), we are trying to "log out" of our own website page in which has YF embedded, then in turn it would automatically kill the YF session.

Did you have a chance to verify this with your SSO guy if this is the inherent?

We worked with Nathan Schroeder on the php for the SSO...


Thanks,

Zack

photo
1

Hi Zack,

Thanks for the additional info here, that said it almost sounds like we might have to add some additional logout parameters to the custom login process to get logging out to work as expected. I'll check with Nathan to see if he's familiar with what this would entail via PHP. I did find this on the internet -

https://auth0.com/docs/quickstart/webapp/laravel

I think this is the general path we'd want to take forward here, does this look like the right idea?

Thanks,

Eric

photo
1

Hey Eric,


Have you spoken with Nathan as far as how to do this via php?


Thanks,

Zack

photo
1

Hi Zack,

Sorry for the delay, gave Nathan another "poke" on this today, hopefully he has time for a reply. It feels like he'll have to tweak the code to get this working for you. Will keep you updated!

Thanks,

Eric

photo
1

Hi Zack,

I heard that Nathan was able to assist with this earlier this week, just wanted to make sure all is well on your end at this point?

Thanks,

Eric

photo
1

Eric,

Thanks for asking! It is good to go. Just had to call the "LOGOUTUSERBYID" call with the same structure as the LOGONUSERNOPASSWORD. It was pretty simple when it came down to it... :)


Thanks again,

Zack

photo
1

Great to hear, Zach!

I'll go ahead and close this ticket.

Thanks,

Eric