On 6/29/2015 5:26 PM, Bill Burke wrote:
We do need some way to listen at the adapter level for a logout
event
sent by the auth server. Undertow and Tomcat and Jetty all have ways to
listen for session invalidation events I believe too. Not sure if the
servlet spec has something standard.
Yes, the servlet spec has HttpSessionListener
with a sessionDestroyed()
callback.
We could come up with some javascript that you put on the client side
that registers with the adapter and gets notified of session
invalidation. I'm just wondering if it's something we should provide or
not.
On 6/29/2015 4:35 PM, Stan Silvert wrote:
> It's common for applications to notify the user if their login session
> has timed out due to inactivity. Then the app typically presents a
> popup notification and possibly an option to refresh the session.
>
> There is a customer who wants to do this for several applications in the
> same realm. Is this something that Keycloak could/should provide or at
> least help with? I'm thinking that maybe a bit of javascript could
> register with the Keycloak server for a notification.
>
> Stan
> _______________________________________________
> keycloak-dev mailing list
> keycloak-dev(a)lists.jboss.org
>
https://lists.jboss.org/mailman/listinfo/keycloak-dev
>