We have an application that launches Spotfire for reporting, passing user identity via a token to a custom authentication filter within Spotfire. We have no way for the application to log out of Spotfire once it's opened an analysis for a user. We can't simply call the logout.jsp page because the application runs from a different domain than Spotfire - so calls to logout.jsp don't include the session tokens because of cross site restrictions.
We need a simple REST compliant API for logging out that supports CORS headers. This could likely be achieved by implementing a method for defining CORS headers within the Spotfire server, which is also probably useful for other APIs that currently will fail when called cross-domain.
Implemented in | 7.14 |
Hi Pete,
There seems to have been a misstake. A REST API for logout has not been implemented, However if you use the JavaScript Mashup API, there was a logout method added in 7.14. See https://docs.tibco.com/pub/sfire_dev/area/doc/api/TIB_sfire_Web_Player_JavaScript_API_Reference/html/M_spotfire_webPlayer_Application_logout.htm.
This is marked as implemented - does anyone know what the API call is?
Thanks will check