Unable to delete Asp.net Identity after Signout RRS feed

  • Question

  • User-1319716544 posted

    I am using below code to Login and Logout for OWIN Authentication. I first login to the system and captured the session,.Asp.ApplicationCookie ,etc using tool like Fiddler or Burp Suite , and logout from system. After that I tried to access the previous url and able to access .It seems the ClaimsIdentity is still alive after logout but it supposed to be deleted and should be redirected to login page after logout . Do you have any idea how I can invalidate the claimsIdentity after signout

     public void IdentitySignin(ApplicationUser appUserState, string providerKey = null, bool isPersistent = false)
                var identity =  UserManager.CreateIdentity(appUserState, DefaultAuthenticationTypes.ApplicationCookie);
                AuthenticationManager.SignIn(new AuthenticationProperties()
                    AllowRefresh = true,
                    IsPersistent = isPersistent,
                    ExpiresUtc = DateTime.UtcNow.AddDays(7)
                }, identity);
            public void IdentitySignout()

    Tuesday, June 21, 2016 12:59 PM

All replies

  • User-2057865890 posted

    Hi dpmragu,


    public ActionResult LogOff()
         return RedirectToAction("Index", "Home");

    Best Regards,


    Wednesday, June 22, 2016 11:06 AM
  • User-1319716544 posted

    Hi Chris Zhao,

    Thank you for reply. I tried with the option but no luck. Is there any way to invalidate the authentication cookie, so that It will be automatically redirected to login page.


    Wednesday, June 22, 2016 3:43 PM