Question:
How can an Admin logout a particular user, ending their user-session?
Answer:
1. Log into Keycloak, https://[DOMINO-DOMAIN]/auth/ . Per the Access Keycloak section of the docs you can fetch the password for user 'keycloak' via:
kubectl get secret -n domino-platform keycloak-http -ojsonpath='{.data.password}' | base64 --decode; echo
2. In DominoRealm choose "Clients" on the left, then "domino-play":
3. Choose "Sessions" at the top, then on the resulting page choose "Show Sessions" on the right. This will show you all users with active sessions.
4. Then drill into your user in the table of users with a session, like my test-user named "integration test" here:
5. Now that you're within the User "integration-test" proceed by selecting Sessions at top:
6. Then select the "log out all sessions" button to end all user-sessions for that specific user. The effect will take a few minutes depending on your Keycloak's "Access Token Lifespan" (typically 5 mins). "Access Token Lifespan" is found at Clients -> domino-play -> settings -> Advanced settings (near bottom).
Comments
0 comments
Please sign in to leave a comment.