[IAG] Cookie authentication-free test does not work, online user logout test causes cookie to become invalid

PostedJune 20, 2024

UpdatedJune 20, 2024

Byadmin

IAG external authentication password authentication, online users are either password-authenticated or free of authentication
At this time, manually log out of the computer that failed the free authentication test in the device online user list, and the test failed again.

According to the customer's description, the location was due to the manual logout of the device's online user list, which caused the user cookie to become invalid.

Manually logging out of the device's online user list causes the user cookie to become invalid

You can successfully go online without authentication by setting up re-authentication after logging out without traffic.

COOKIE is exempt from certification during the validity period, and the validity period will be postponed. For example, the expiration date in the above figure is April 16, 2017. If you log in without authentication before this time, the cookie validity period will be extended by 40 days based on the current login time.
Users who are exempt from COOKIE authentication should be set as public users. If it is a private user, the previous user will be kicked offline. Then the first time a user uses cookie authentication, the previous user will be kicked offline and the cookie data will be cleared.
Users who are exempt from COOKIE authentication can only log out without traffic or at a scheduled time, and the COOKIE records in the device will be retained. Other methods (forced logout, user logout, etc.) will clear the corresponding records and cause the authentication-free process to fail.
The system portal authentication page pops up on the iPhone cannot be used to plant cookies. The solution is to exclude the domain name captive.apple.com from the device globally.