SSO Cookie

このページの内容

お困りですか?

アトラシアン コミュニティをご利用ください。

コミュニティに質問

When using Crowd for single sign-on (SSO), you can specify that the 'secure' flag is set on the SSO cookie. This will enforce a secured connection, such as SSL, for all SSO requests.

Unsecured connections will be rejected

If you set this flag, any applications not using a secure connection will not be able to participate in SSO and users will not be able to log in. Potentially, this may make it impossible to log in to Crowd, if your Crowd Administration Console application is not accessed via SSL.

To specify the secure flag on the SSO cookie,

  1. Crowd Administration Console にログインします。
  2. Click the 'Administration' tab in the top navigation bar.
  3. The 'General Options' screen will appear. Tick or untick the 'Secure SSO Cookie' checkbox as required:
    • Ticked — The 'secure' attribute will be included on the SSO cookie. A secured connection, such as SSL or TLS, is required for all SSO requests. Unsecured connections will be refused.
    • Not ticked — This is the default. The 'secure' attribute will not be included on the SSO cookie. This means that the SSO cookie may be transmitted over an unsecured connection.
  4. Click the 'Update' button.

Screenshot: Secure SSO Cookie in Crowd General Options

関連トピック

Crowd 3.0 beta documentation

最終更新日 2017 年 5 月 22 日

この内容はお役に立ちましたか?

はい
いいえ
この記事についてのフィードバックを送信する
Powered by Confluence and Scroll Viewport.