I'd like to centralize control of Jira session timeouts into my identity provider. SAML specifies an attribute called SessionNotOnOrAfter, which according to the specification:
"Specifies a time instant at which the session between the principal identified by the subject and the SAML authority issuing this statement MUST be considered ended."
Does Jira honor this attribute for the purposes of restricting session durations?
Connect with like-minded Atlassian users at free events near you!Find an event
Connect with like-minded Atlassian users at free events near you!
Unfortunately there are no Community Events near you at the moment.Host an event
You're one step closer to meeting fellow Atlassian users at your local event. Learn more about Community Events