I’ve set up a galaxy server that users apache and remote user authentication.
When a user is logged in, pressing “logout” presents two problems:
- User is directed to the galaxy “login” page, that is not relevant for us because apache is passing credentials. I.e. the LDAP credentials do not work in the galaxy “login” page.
- If the user then presses the back button on the browser, the browser has cached credentials and the user is still logged in.
This has already been addressed in a galaxy help thread here from 2014 but I think the response is out of date:
I’m wondering if anyone has more updated experience with this?
For example, the following line in galaxy.yml does not appear to do anything in my installation. Adding a destination or removing the line entirely gives the same logout behavior.
EDIT thanks to comment below, the syntax for yml that I am using is, e.g.:
I would appreciate any insight into how to properly log out users from Galaxy that are logged in as remote users from apache. One possibility that I’ve considered is to just solve #1, that is, to have the “logout” button go to a page that explains that the user must close the browser in order to log out but I’m not sure how to do that.