Instead of using a shared session id for both the platform domain name (conf.researchr.org) and conference-specific domain names, make session ids only valid for a single domain. Visitors may need to re-login once when visiting a conference website from another domain. After this, single sign on should work again.

Submitted by Elmer van Chastelet on 6 January 2021 at 13:09