Professional Documents
Culture Documents
T24 Token Management
T24 Token Management
No part of this document may be reproduced or transmitted in any form or by any means, for any purpose,
without the express written permission of TEMENOS HEADQUARTERS SA.
When a user signs on to the T24 server using the browser, a request to create a session is sent
to the T24 server. This will always be the first request from the user to T24. The T24 Browser
component on the Web Server is the one that identifies and distinguishes a sign on request from other
requests.
When this request hits the T24 server, T24 will picks up the request, understands that it is a
‘sign on’ request, does SMS validations and create a new token for that user. This is the token that will
be used by the user when he sends his subsequent request. Please note that a token is not created for
the first request from the user (Sign on request). The token once created, is stored in the database. It
is vital to understand that it is T24 that is creating and storing the tokens.
F.OS.TOKEN
F.OS.TOKEN.USE
OS.TOKEN –
The token in this file is the token that the user needs to use when a subsequent request is
issued by the user
ID of this file Token numbers are generated using a core T24 routine named
ALLOCATE.UNIQUE.TIME
This routine creates a 12 digit number (UUUUUTTTTT.NN)
OS.TOKEN.USE –
Contains a list of previously used tokens
When a new request is accepted the active token is moved to the used file
A maximum stack size is maintained with old tokens removed when this size is reached
Token Management
SCNEARIO’S HANDLED
SETUP
Browser Screen with proper signout by having TimeoutMinutes to 1 minute.
Scenario 1:-
Token Management
Login to T24
OS.TOKEN OS.TOKEN.USE
Scenario 2:-
Idle browser session after 1 minute when having TimeoutMinutes to 1 minute and Timemode set with
Active.
Scenario 3:-
After Login
OS.TOKEN OS.TOKEN.USE
Same tokens remains in T24 tables even after REACHING the timeout minutes defined in USER/SPF
OS.TOKEN OS.TOKEN.USE
After re-login, existing tokens records got cleared and new tokens got updated with Sign in Time.
So, pressing the [X] will not clear the token unless we re-login with the same user/maximum
concurrent user reached
Scenario 4:-
Case 1
Case to simulate when user close[X] enquiry popup window(when the enquiry is running on SELECT)
To simulate the above case, created a dummy build routine with a Sleep.
Test case to launch as many as enquiry popups and closing all the Enquiry Screen popups using [X] and
with proper signoff from browser Screen will also clear the tokens
We have closed all enquiry Pops, TOKEN/USE still available and a proper signoff of main screen clears
the Token.
Tokens got cleared.
OS.TOKEN OS.TOKEN.USE
Case 2
With the same sleep on enquiry allowing the enquiry popup to run till the end will give below message
of app server time out, this will not impact T24 Token unless we use Signoff button in the T24 Home
screen.
SUMMARY
T24 Token are maintained in OS.TOKEN and OS.TOKEN.USE and clear request only be triggered
only when
o Proper signoff from T24 browser
o Send a request after reaching timeout in the Idle T24 Browser session.
o When maximum concurrent user reached, T24 system will not prompt immediately
with message, instead it will trigger a clean up process to remove all expired tokens.
o Expired Token will be cleared when re-login with same user, and a new token will
created with latest login time.