Skip to content

Commit

Permalink
Fix cookie-splitting setting example for SAML backend documentation (#…
Browse files Browse the repository at this point in the history
…3949)

* fix#3947 cookie splitting fix

Signed-off-by: cwillum <[email protected]>

* fix#3947 cookie splitting fix

Signed-off-by: cwillum <[email protected]>

---------

Signed-off-by: cwillum <[email protected]>
  • Loading branch information
cwillum authored May 3, 2023
1 parent c9da6c0 commit 2d20f53
Show file tree
Hide file tree
Showing 2 changed files with 3 additions and 3 deletions.
2 changes: 1 addition & 1 deletion _security/authentication-backends/openid-connect.md
Original file line number Diff line number Diff line change
Expand Up @@ -337,7 +337,7 @@ To include OpenID Connect with other authentication types in the Dashboards sign

#### Session management with additional cookies

To improve session managementespecially for users who have multiple roles assigned to themDashboards provides an option to split cookie payloads into multiple cookies and then recombine the payloads when receiving them. This can help prevent larger OpenID Connect assertions from exceeding size limits for each cookie. The two settings in the following example allow you to set a prefix name for additional cookies and specify the number of them. The default number of additional cookies is three:
To improve session management---especially for users who have multiple roles assigned to them---Dashboards provides an option to split cookie payloads into multiple cookies and then recombine the payloads when receiving them. This can help prevent larger OpenID Connect assertions from exceeding size limits for each cookie. The two settings in the following example allow you to set a prefix name for additional cookies and specify the number of them. They are added to the `opensearch_dashboards.yml` file. The default number of additional cookies is three:

```yml
opensearch_security.openid.extra_storage.cookie_prefix: security_authentication_oidc
Expand Down
4 changes: 2 additions & 2 deletions _security/authentication-backends/saml.md
Original file line number Diff line number Diff line change
Expand Up @@ -337,10 +337,10 @@ To include SAML with other authentication types in the Dashboards sign-in window

#### Session management with additional cookies

To improve session managementespecially for users who have multiple roles assigned to themDashboards provides an option to split cookie payloads into multiple cookies and then recombine the payloads when receiving them. This can help prevent larger SAML assertions from exceeding size limits for each cookie. The two settings in the following example allow you to set a prefix name for additional cookies and specify the number of them. The default number of additional cookies is three:
To improve session management---especially for users who have multiple roles assigned to them---Dashboards provides an option to split cookie payloads into multiple cookies and then recombine the payloads when receiving them. This can help prevent larger SAML assertions from exceeding size limits for each cookie. The two settings in the following example allow you to set a prefix name for additional cookies and specify the number of them. They are added to the `opensearch_dashboards.yml` file. The default number of additional cookies is three:

```yml
opensearch_security.saml.extra_storage.cookie_prefix: security_authentication_oidc
opensearch_security.saml.extra_storage.cookie_prefix: security_authentication_saml
opensearch_security.saml.extra_storage.additional_cookies: 3
```

Expand Down

0 comments on commit 2d20f53

Please sign in to comment.