Hi, On Wed, Jan 17, 2018 at 10:03 PM, Kanapriya Kuleswararajan < [email protected]> wrote:
> Hi All, > > Please find the status of the POC which I have done for this feature as > discussed above. > > Please consider the below scenario. >> >> >> >> >> >> When the Federated IdP sends the logout request we have to logout the >> user from the WSO2IS. The proposed POC is as follows. >> >> - 1 & 4 are OAuth flows >> - 2 & 3 are SAML flows >> >> Participants of the discussion: Malithi, Thanuja and Dimuthu >> >> For the POC we will do the following. >> >> a) - At number 4 in the diagram, i.e. at the conclusion flow, we >> implement a listener that would record the SAML session Index vs. session >> Id in an appropriate data structure (for the POC it is a map). This handler >> will be in the out-boud SAML component. >> > > I have implemented this flow, by obtaining the session id and SAML session > index and store it in a static map (SAML session Index vs. session Id) > inside > identity-outbound-auth-samlsso. Please find the sample piece of code [1] > & [2] below (Correct me,If I'm wrong on this flow). > > [1] https://github.com/Kanapriya/saml-sso-outbound/blob/ > 6001bb1d48da6a8b6fa1b4d4906eda38cc99b231/components/org. > wso2.carbon.identity.application.authenticator.samlsso/src/main/java/org/ > wso2/carbon/identity/application/authenticator/samlsso/internal/ > SAMLSSOAuthenticatorServiceComponent.java#L88 > > [2] https://github.com/Kanapriya/saml-sso-outbound/blob/master/ > components/org.wso2.carbon.identity.application.authenticator.samlsso/src/ > main/java/org/wso2/carbon/identity/application/authenticator/samlsso/ > SAMLAuthenticationDataPublisher.java#L71 > > Please raise If you have any concern on this. > Please use map.getValue("keyName") instead of the following. Get the exact entry from map. The order of the map cannot be guaranteed. Object sessionId = map.entrySet().iterator().next().getValue(); thank you, Dimuthu > > Thanks, > Kanapriya > >> >> >> b) - At number 5 in the diagram, i.e. when the logout request is >> received, we wrap the request and response and send over to our >> common-auth servelet. Here before invoking the common-auth servelet, we >> will retrieve session Id from the map (using the SAML Session Index) and >> set it in the wrapper object. >> >> @Thanuja and Malithi: Please add anything that I have missed. And also >> appreciate code snippets for above (a) and (b). >> >> After the POC implementation, we will have another review. >> >> thank you, >> Dimuthu >> >> -- >> Dimuthu Leelarathne >> Director, Solutions Architecture >> >> WSO2, Inc. (http://wso2.com) >> email: [email protected] >> Mobile: +94773661935 <077%20366%201935> >> Blog: http://muthulee.blogspot.com >> >> Lean . Enterprise . Middleware >> > > > > -- > Dimuthu Leelarathne > Director, Solutions Architecture > > WSO2, Inc. (http://wso2.com) > email: [email protected] > Mobile: +94773661935 <+94%2077%20366%201935> > Blog: http://muthulee.blogspot.com > > Lean . Enterprise . Middleware > >> >>>> _______________________________________________ >>>> Architecture mailing list >>>> [email protected] >>>> https://mail.wso2.org/cgi-bin/mailman/listinfo/architecture >>>> >>>> >>> >>> >>> -- >>> With Regards, >>> >>> *Rasika Perera* >>> Senior Software Engineer >>> LinkedIn: http://lk.linkedin.com/in/rasika90 >>> >>> <http://wso2.com/signature> >>> >>> WSO2 Inc. www.wso2.com >>> lean.enterprise.middleware >>> >>> _______________________________________________ >>> Architecture mailing list >>> [email protected] >>> https://mail.wso2.org/cgi-bin/mailman/listinfo/architecture >>> >>> >> >> >> -- >> Thanks & Regards, >> Asela >> >> ATL >> Mobile : +94 777 625 933 <+94%2077%20762%205933> >> +358 449 228 979 >> >> http://soasecurity.org/ >> http://xacmlinfo.org/ >> >> _______________________________________________ >> Architecture mailing list >> [email protected] >> https://mail.wso2.org/cgi-bin/mailman/listinfo/architecture >> >> > > _______________________________________________ > Architecture mailing list > [email protected] > https://mail.wso2.org/cgi-bin/mailman/listinfo/architecture > > -- Dimuthu Leelarathne Director, Solutions Architecture WSO2, Inc. (http://wso2.com) email: [email protected] Mobile: +94773661935 Blog: http://muthulee.blogspot.com Lean . Enterprise . Middleware
_______________________________________________ Architecture mailing list [email protected] https://mail.wso2.org/cgi-bin/mailman/listinfo/architecture
