Guest User Profile Takes Over when Site User Session Ends

Date de publication: Aug 16, 2023

Description

When logged in as an Experience Cloud site user, if a session times out, the access of the Guest User is applied until a new session is created.

All components and any subsequent API requests made, will be processed as the Guest User. To avoid any risk of data leak, the Guest User profile should have the correct permissions set at all times.

Individual components do not handle session timeouts. This, is handled at the App Level by redirecting to the login page or showing a session timeout warning (pop up).

Résolution

Session timeout implies that once a user has been timed out, the profile settings and permissions for the Guest User will be used for data access until a new session is created. For this reason, it is important that Best Practices and Considerations When Configuring the Guest User Profile are followed at all times.

Numéro d’article de la base de connaissances

000389610

Cet article a-t-il résolu votre problème ?

Dites-nous ce que nous pouvons améliorer !

Guest User Profile Takes Over when Site User Session Ends

General Information

Required Cookies

Functional Cookies

Advertising Cookies

General Information

Required Cookies

Functional Cookies

Advertising Cookies

Cookie List