Change Gluu Status to Inactive

By: Arda Akinci user 17 May 2022 at 1:14 a.m. CDT

6 Responses
Arda Akinci gravatar
Hello Team, When I change user gluuStatus to "inactive" if user is logged in , their tokens do not expire. I want tokens to expire and be forced to logout. Can you help with this issue? Thanks, Arda.
Gluu 4.2.3 Ubuntu 20.04
closed

Answers

By Mohib Zico staff 17 May 2022 at 2:27 a.m. CDT

Copy
Mohib Zico gravatar
Hello Arda, I believe, this doesn't expire / killed immediately and expected behavior. Next time ( depending on what timing you fixed for Session's Lifetime and if browser is killed ), he won't be able to login.

By Arda Akinci user 17 May 2022 at 2:33 a.m. CDT

Copy
Arda Akinci gravatar
Thank you Mohib, According to this answer, such a thing is not possible(expire another user's token).

By Mohib Zico staff 17 May 2022 at 2:35 a.m. CDT

Copy
Mohib Zico gravatar
>> such a thing is not possible(expire another user's token). Not sure what you mean by that. Explain a bit please?

By Arda Akinci user 17 May 2022 at 3:19 a.m. CDT

Copy
Arda Akinci gravatar
This is exactly what I want; Admin should be able to inactivate another user registered on the gluu server and immediately redirect to the login page.

By Arda Akinci user 24 May 2022 at 8:34 a.m. CDT

Copy
Arda Akinci gravatar
Hi Again, I hope I was able to explain what I want. Is it possible to be redirected directly to the login page when I deactivate the status of a logged in user while he has an active token? thanks, arda

By Mohib Zico staff 20 Jun 2022 at 1:34 a.m. CDT

Copy
Mohib Zico gravatar
>> Is it possible to be redirected directly to the login page when I deactivate the status of a logged in user while he has an active token? Every token has a life time, as well as every session has a lifetime. What you are asking about is not possible out of the box. But, I believe you can achieve with custom script... - Run custom script ( jython / bash / python ) which would read ldap "gluuStatus" value for every user. - Whenever it will find "gluuStatus == inactive", it would search for sessionId or tokenId associated with that inum of user. If found any, immediately delete them.

Post an answer