web
You’re offline. This is a read only version of the page.
close
Skip to main content

Notifications

Announcements

Welcome to the Power Platform Communities
Season of Giving Solutions is Here!
Explore Copilot Studio Forums, Blogs & Galleries!
News and Announcements icon
Community site session details

Community site session details

Session Id :
Power Platform Community / Forums / Power Pages / Session cookie not inv...
Power Pages
Unanswered

Session cookie not invalidated in logout

(0) ShareShare
ReportReport
Posted on by Elrond30

Hello,

I am running into a security issue in my Power Apps Portal application. I have users with different permissions. And I do the following test:

1. I signed in with an administrator user

2. I copied the session cookie

3. I logged out the administrator user

4. I signed in with another user with less privileges.

5. With a local proxy, I changed the session cookie of the less privileged user

6. I have administrator privileged now.

 

As I have seen, when I make the logout of the administrator user, the response have a set-cookie header, but this header is empty, and the session cookie is not invalidated.


¿There is a way to invalidate a session cookie when the user use the logout function?

 

Thank you,

Best regards

Categories:
Power Apps portals
I have the same question (0)

Under review

Thank you for your reply! To ensure a great experience for everyone, your content is awaiting approval by our Community Managers. Please check back later.

Helpful resources

News and Announcements

Welcome to the Power Platform Communities
Season of Giving Solutions is Here!
Explore Copilot Studio Forums, Blogs & Galleries!

Quick Links

Forum hierarchy changes are complete!

In our never-ending quest to improve we are simplifying the forum hierarchy…

Ajay Kumar Gannamaneni – Community Spotlight

We are honored to recognize Ajay Kumar Gannamaneni as our Community Spotlight for December…

Congratulations to the November Top 10 Community Leaders!

These are the community rock stars!

Leaderboard > Power Pages

#1
Jerry-IN Profile Picture

Jerry-IN 71

#2
Fubar Profile Picture

Fubar 62 Super User 2025 Season 2

#3
sannavajjala87 Profile Picture

sannavajjala87 31

Last 30 days Overall leaderboard

Featured topics

Solution to LinkedIn Authentication in Power Apps Portals
Welcome to the Power Pages forum!

Product updates

Microsoft Power Platform Community release plans