Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

support for front-channel SAML SingleLogoutService profiles #2111

Closed
hauntingEcho opened this issue Jan 18, 2018 · 1 comment
Closed

support for front-channel SAML SingleLogoutService profiles #2111

hauntingEcho opened this issue Jan 18, 2018 · 1 comment
Labels
Affected/5.4.0 Component/SAML Resolution/Duplicate Type/Improvement
Milestone
5.8.0-M26

Comments

@hauntingEcho
Copy link

hauntingEcho commented Jan 18, 2018
edited
Loading

Description:
When a user has an SSO session active at an SP and logs out from WSO2, they should also be logged out of those SPs per the SAML2 Single Logout specification. I have not had reason to check SOAP profile support, but neither POST nor Redirect profiles are used.

Copied from the plugin repo as this one seems to get more attention:
wso2-extensions/identity-inbound-auth-saml#167

Suggested Labels:
Affected/5.4.0, Component/SAML,

OS, DB, other environment details and versions:
Debian stable (9), WSO2 IS 5.4.0, FireFox LTS (52)

Steps to reproduce:

  • set up a default installation of WSO2 IS 5.4.0
  • set up a Service Provider with a SAML metadata file including SingleLogoutService endpoints with a binding of either "urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" or "urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect"
  • set up a user in both the SP and WSO2, with access to log in to the WSO2 dashboard
  • use a request from that service provider to log in to WSO2
  • navigate to the WSO2 dashboard
  • open dev tools to watch the request
  • logout (via the WSO2 dashboard)
  • see that no SLO request was made to the service provider
  • navigate to the service provider and see that you are still authenticated
@pulasthi7 pulasthi7 added this to the 5.6.0 milestone May 21, 2018
@isharak isharak modified the milestones: 5.6.0, FUTURE May 21, 2018
@hauntingEcho hauntingEcho mentioned this issue Jun 28, 2018
Closed
@nadeepoornima nadeepoornima mentioned this issue Dec 23, 2018
Closed
@thanujalk thanujalk modified the milestones: FUTURE, 5.8.0-M26 Mar 13, 2019
@thanujalk
Copy link
Contributor

@hauntingEcho We have captured the same improvement in #4038 and it will available in the IS 5.8.0-M26.

@Thisara-Welmilla Thisara-Welmilla mentioned this issue Sep 18, 2024
Open
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
Affected/5.4.0 Component/SAML Resolution/Duplicate Type/Improvement
Projects
None yet
Milestone
5.8.0-M26
Development

No branches or pull requests
5 participants
@pulasthi7 @thanujalk @hauntingEcho @isharak @omindu