What are the logout from all devices strategies with cookie based authentication?

Asked Jun 02 '20 at 09:02

Active Jun 02 '20 at 09:02

Viewed 123 times

Which shouldn't also rely on Identity or IdentityServer concepts, maximum a DB Table for storage. Searched around and can't find something like that.

asked Jun 02 '20 at 09:02

Eugene

1

Store an encrypted hash of all of a user's authentication cookies in a database table. When user accesses, check authentication cookie against encrypted hash. When "logout from all devices" is invoked, remove all of the user's hashes from the table. – Robby Cornelissen Jun 02 '20 at 09:05
@RobbyCornelissen I can't even get the encrypted cookie from the HttpContext in the first place, do you know how to do that? – Eugene Jun 02 '20 at 10:09

What are the logout from all devices strategies with cookie based authentication?

0 Answers0