Hi All, Please find the status of the POC which I have done for this feature as discussed above.
Please consider the below scenario. > > > > > > When the Federated IdP sends the logout request we have to logout the user > from the WSO2IS. The proposed POC is as follows. > > - 1 & 4 are OAuth flows > - 2 & 3 are SAML flows > > Participants of the discussion: Malithi, Thanuja and Dimuthu > > For the POC we will do the following. > > a) - At number 4 in the diagram, i.e. at the conclusion flow, we implement > a listener that would record the SAML session Index vs. session Id in an > appropriate data structure (for the POC it is a map). This handler will be > in the out-boud SAML component. > I have implemented this flow, by obtaining the session id and SAML session index and store it in a static map (SAML session Index vs. session Id) inside identity-outbound-auth-samlsso. Please find the sample piece of code [1] & [2] below (Correct me,If I'm wrong on this flow). [1] https://github.com/Kanapriya/saml-sso-outbound/blob/6001bb1d48da6a8b6fa1b4d4906eda38cc99b231/components/org.wso2.carbon.identity.application.authenticator.samlsso/src/main/java/org/wso2/carbon/identity/application/authenticator/samlsso/internal/SAMLSSOAuthenticatorServiceComponent.java#L88 [2] https://github.com/Kanapriya/saml-sso-outbound/blob/master/components/org.wso2.carbon.identity.application.authenticator.samlsso/src/main/java/org/wso2/carbon/identity/application/authenticator/samlsso/SAMLAuthenticationDataPublisher.java#L71 Please raise If you have any concern on this. Thanks, Kanapriya > > > b) - At number 5 in the diagram, i.e. when the logout request is received, > we wrap the request and response and send over to our common-auth > servelet. Here before invoking the common-auth servelet, we will retrieve > session Id from the map (using the SAML Session Index) and set it in the > wrapper object. > > @Thanuja and Malithi: Please add anything that I have missed. And also > appreciate code snippets for above (a) and (b). > > After the POC implementation, we will have another review. > > thank you, > Dimuthu > > -- > Dimuthu Leelarathne > Director, Solutions Architecture > > WSO2, Inc. (http://wso2.com) > email: [email protected] > Mobile: +94773661935 <077%20366%201935> > Blog: http://muthulee.blogspot.com > > Lean . Enterprise . Middleware > -- Dimuthu Leelarathne Director, Solutions Architecture WSO2, Inc. (http://wso2.com) email: [email protected] Mobile: +94773661935 <+94%2077%20366%201935> Blog: http://muthulee.blogspot.com Lean . Enterprise . Middleware > >>> _______________________________________________ >>> Architecture mailing list >>> [email protected] >>> https://mail.wso2.org/cgi-bin/mailman/listinfo/architecture >>> >>> >> >> >> -- >> With Regards, >> >> *Rasika Perera* >> Senior Software Engineer >> LinkedIn: http://lk.linkedin.com/in/rasika90 >> >> <http://wso2.com/signature> >> >> WSO2 Inc. www.wso2.com >> lean.enterprise.middleware >> >> _______________________________________________ >> Architecture mailing list >> [email protected] >> https://mail.wso2.org/cgi-bin/mailman/listinfo/architecture >> >> > > > -- > Thanks & Regards, > Asela > > ATL > Mobile : +94 777 625 933 <+94%2077%20762%205933> > +358 449 228 979 > > http://soasecurity.org/ > http://xacmlinfo.org/ > > _______________________________________________ > Architecture mailing list > [email protected] > https://mail.wso2.org/cgi-bin/mailman/listinfo/architecture > >
_______________________________________________ Architecture mailing list [email protected] https://mail.wso2.org/cgi-bin/mailman/listinfo/architecture
