Hi Nadeesha. This is an expected behavior. In this scenario not only SLO you involve in Single login, Federated authentication. Here involve protocols SAML between travelocity.com - IS and OIDC between IS - Google. In this scenario SLO works over application logged in with IS only. In that case if you have a google session in your browser you should be automatically logged in again.
Thanks, Ishara On Thu, Sep 17, 2015 at 6:29 PM, Nadeesha Meegoda <[email protected]> wrote: > Hi Hasinthi, > > It works fine when I logout from Google account. But my concern is, Is > that the expected behavior of Single Logout? If so, when trying to sign in > from travelocity app if we are sending request for Google for > authentication why does the logout acts differently? Why can't it send a > request for Google for single logout? Clicking logout in my point of view > is to logout from the application/session, and when trying to login again > Google credentials should be provided. Otherwise what is the point of the > logout if the session stays persistent? Please clarify! > > On Thu, Sep 17, 2015 at 4:02 PM, Hasanthi Purnima Dissanayake < > [email protected]> wrote: > >> Hi Nadeesha, >> >> Once you logout from the travelocity app, please make sure to logout from >> the google account too. Otherwise if there is a session of the google >> account it will automatically redirect to travelocity app in the second >> attempt without asking the permission. Please let us know if you face the >> same issue even after logging out from the google account too. >> >> Thanks. >> >> Hasanthi Dissanayake >> >> Software Engineer | WSO2 >> >> E: [email protected] <[email protected]> >> M :0718407133| http://wso2.com <http://wso2.com/> >> >> On Thu, Sep 17, 2015 at 2:57 PM, Nadeesha Meegoda <[email protected]> >> wrote: >> >>> Hi, >>> >>> Followed the blog in [1] and configured Google as OpenID Connect IDP. >>> Login in to travelocity.com with SAML was successful with google >>> authentication. Also when the logout was clicked it directed to >>> http://localhost:8080/travelocity.com/index.jsp from the home.jsp so I >>> thought the logout was successful. But when I tried to sign in with SAML >>> again I got logged in automatically without asking for the Google >>> authentication credentials. Have I missed some configurations? >>> >>> Note : I have enabled single logout in the SP I created and double >>> checked the travelocity.properties file and there also it is marked as >>> true. (SAML.EnableSLO=true). With the SAML tracer I monitored the logout >>> but I couldn't see any request sent to google where I think is the issue. >>> >>> [1] - http://xacmlinfo.org/2014/12/02/621/ >>> >>> Any help on above is highly appreciated. >>> >>> >>> Thank you >>> -- >>> *Nadeesha Meegoda* >>> Software Engineer - QA >>> WSO2 Inc.; http://wso2.com >>> lean.enterprise.middleware >>> email : [email protected] >>> mobile: +94783639540 >>> <%2B94%2077%202273555> >>> >>> _______________________________________________ >>> Dev mailing list >>> [email protected] >>> http://wso2.org/cgi-bin/mailman/listinfo/dev >>> >>> >> > > > -- > *Nadeesha Meegoda* > Software Engineer - QA > WSO2 Inc.; http://wso2.com > lean.enterprise.middleware > email : [email protected] > mobile: +94783639540 > <%2B94%2077%202273555> > -- Ishara Karunarathna Senior Software Engineer WSO2 Inc. - lean . enterprise . middleware | wso2.com email: [email protected], blog: isharaaruna.blogspot.com, mobile: +94717996791
_______________________________________________ Dev mailing list [email protected] http://wso2.org/cgi-bin/mailman/listinfo/dev
