APM multi domain SSO, incorrect timeout URL
Hi,
I've set up APM with multidomain SSO. Let's say I have a site "service.mydomain.com" and a login URL "login.mydomain.com".
Works fine, I go to service.mydomain.com, I don't have an APM session, I get redirected to login.mydomain.com. I can log in, I go back to service.mydomain.com. SSO gets activated, all is well.
Now let's say I don't log in on login.mydomain.com and let it timeout. A link appears: "Expired/Timeout, click here to start a new session". The link points to the root of login.mydomain.com.
When I click on the link, The SSO_ORIG_URI from the first redirect is lost, there is no link back to the service. The correct thing for the APM would be to link to the SSO_ORIG_URI, which it knows because it was in the redirect that was sent by the service when this specific session was created.
Am I missing something here? Or is this bad behaviour by the BigIP/APM?
Thanks Vincent