|
|
|
In Use Case 5, an employee of smcompany.com authenticates at an employee portal, www.smcompany.com, and selects a link to view her health benefits at www.ahealthco.com. The employee is taken to ahealthco.com's Web site and presented with her health benefit information without having to sign on to ahealthco.com's Web site.
After the employee has finished looking at her health benefits, ahealthco.com wants to ensure that when the employee logs out from ahealthco.com, the user's session at ahealthco.com and the session at smcompany.com is terminated. Terminating both sessions ensures that an unauthorized employee cannot use the existing sessions to access resources at smcompany.com or to view benefits of the authorized employee.
Note: The initial logout could occur at smcompany.com and result in both sessions being terminated.
The following illustration shows the use case.
| Copyright © 2010 CA. All rights reserved. | Email CA about this topic |