Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

support for front-channel SingleLogoutService profiles #167

Open
hauntingEcho opened this issue Jan 11, 2018 · 0 comments
Open

support for front-channel SingleLogoutService profiles #167

hauntingEcho opened this issue Jan 11, 2018 · 0 comments

Comments

@hauntingEcho
Copy link

Description:
When a user has an SSO session active at an SP and logs out from WSO2, they should also be logged out of those SPs per the SAML2 Single Logout specification. I have not had reason to check SOAP profile support, but neither POST nor Redirect profiles are used.

Suggested Labels:
Complexity/High (https://wiki.shibboleth.net/confluence/display/CONCEPT/SLOIssues)
Feature
Type/New Feature

Affected Product Version:
WSO2 IS 5.4.0

OS, DB, other environment details and versions:
Debian stable (9), WSO2 IS 5.4.0, FireFox LTS (52)

Steps to reproduce:

  • set up a default installation of WSO2 IS 5.4.0
  • set up a Service Provider with a SAML metadata file including SingleLogoutService endpoints with a binding of either "urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" or "urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect"
  • set up a user in both the SP and WSO2, with access to log in to the WSO2 dashboard
  • use a request from that service provider to log in to WSO2
  • navigate to the WSO2 dashboard
  • open dev tools to watch the request
  • logout (via the WSO2 dashboard)
  • see that no SLO request was made to the service provider
  • navigate to the service provider and see that you are still authenticated
@hauntingEcho hauntingEcho mentioned this issue Jan 18, 2018
Closed
rushmin pushed a commit to rushmin/identity-inbound-auth-saml that referenced this issue Jan 28, 2018
@wso2-jenkins-bot
[WSO2 Release] [Jenkins wso2-extensions#167] [Release 5.3.41] prepare…
3bd9698 
… release v5.3.41
rushmin pushed a commit to rushmin/identity-inbound-auth-saml that referenced this issue Jan 28, 2018
@wso2-jenkins-bot
[WSO2 Release] [Jenkins wso2-extensions#167] [Release 5.3.41] prepare…
db73be0 
… for next development iteration
wso2-jenkins-bot added a commit that referenced this issue Nov 18, 2019
@wso2-jenkins-bot
[WSO2 Release] [Jenkins #167] [Release 5.6.21] prepare release v5.6.21
09f31f3
wso2-jenkins-bot added a commit that referenced this issue Nov 18, 2019
@wso2-jenkins-bot
[WSO2 Release] [Jenkins #167] [Release 5.6.21] prepare for next devel…
c031dab 
…opment iteration
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@hauntingEcho