+xHow are the connection strings encrypted? If you use the standard ASPNET_REGIIS to perform the encryption, IIS will automatically decrypt the connection string and therefore no code changes are required. https://techcommunity.microsoft.com/t5/iis-support-blog/connection-string-encryption-and-decryption/ba-p/830094If you're using some other mechanism or need something else supported in the DatabaseSSOSessionStore, please let us know. It might make more sense for us to add this support. Alternatively, you can extend the AbstractDatabaseSSOSessionStore. I'm afraid we don't have any examples of this but let me know if you have any specific questions. We use a custom encryption method in the connection string. If we were to extend AbstractDatabaseSSOSessionStore, we'd need guidance on completing the below class. Simple pseudo code would do, we'd complete the code. Sample class: Public Class GSIDatabaseSSOSessionStore Inherits AbstractDatabaseSSOSessionStore Public Overrides Sub Save(ssoSession As Object) ' how to delete ? End Sub Public Overrides Sub Delete(type As Type) ' how to delete ? End Sub Public Overrides Function Load(type As Type) As Object ' how to load the return Object ? End Function Public Overloads Function DeleteExpired(expirationDateTime As Date) As Integer ' is the below pseudo code correct? ' delete SSOSessions where UpdateDateTime < expirationDateTime ? ' delete SAMLIdentifiers where ExpirationDateTime < expirationDateTime ? End Function Public Overloads Function Delete(sessionID As String) As Integer ' is the below pseudo code correct? ' delete SAMLIdentifiers where ID = sessionID ? End Function End Class Appreciate your assistance.
|