Hi All, For the POC [1], I have registered a new servlet in identity-outbound-auth-samlsso authenticator and try out the FIDP initiated logout flow by removing the session id which is associated with the earlier login.
Now I have tried to move the POC [1] code to support with the new identity framework. Here, we have a concern that whether we need to move the code to the *identity-inbound-auth-saml* or *identity-outbound-auth-samlsso*. IMO, we need to handle the logout request which is initiated by FIDP inside identity-inbound-auth-saml. Please find the reasons for that : - Generally, whenever the request comes to IS from External system, it will be handle by the Inbound flow (identity-inbound-auth-saml). - I have configured IS with two service providers (Travelocity, Avis) and try out the logout flow. - Where I'm able to see the SAML Logout Request which is exactly same as SAML Logout Request which is initiated by FIDP. - Since both SAML Logout Request are same, we can move code to identity-inbound-auth-saml. Appreciate your thoughts on this. [1] Federated IdP Initiated Logout Thanks, Kanapriya Kanapriya Kuleswararajan Software Engineer Mobile : - 0774894438 Mail : - [email protected] LinkedIn : - https://www.linkedin.com/in/kanapriya-kules-94712685/ WSO2, Inc. lean . enterprise . middleware
_______________________________________________ Architecture mailing list [email protected] https://mail.wso2.org/cgi-bin/mailman/listinfo/architecture
