On Thu, Jan 25, 2018 at 9:16 AM, Chiran Wijesekara <[email protected]> wrote:
> Hi, > > @Omindu, According to the current implementation of IS SAML SLO, it just > requires a 200 OK response from the session participating SP's. > By implementation you mean, how we validate the Logout response at IS side ? In any case, the agent should send a logout proper request with status code and a payload as advised in the specification and not just a 200 OK. > > However, as discussed offline (with Dulanja and Omindu), need to have some > kind of polling mechanism to achieve single logout from the client side. > To be more clear, this is to remove the SP side user session once the back channel logout request is received from the IDP. > > I'm currently Investigating on SignalR to achieve that $Subject > requirement along with Javascript. > Thanks > > On Wed, Jan 24, 2018 at 1:44 PM, Omindu Rathnaweera <[email protected]> > wrote: > >> Hi Chiran, >> >> This is the backchannel logout request initiated by IS to SP2 you are >> talking about, correct? If so once SP2 receives the logout request from IS, >> it should respond back to with a successful SAML logout response after >> removing SP2 side user session without doing a redirection. Please refer >> [1] which has a detailed explanation on how SAML SLO works. >> >> [1] - http://xacmlinfo.org/2013/06/28/how-saml2-single-logout-works/ >> >> Regards, >> Omindu. >> >> >> On Wed, Jan 24, 2018 at 10:29 AM, Chiran Wijesekara <[email protected]> >> wrote: >> >>> Hi all, >>> I have set up two service providers, suppose *SP1* and *SP2*. when *SP1* >>> sends the logout request to IS SP2's following code block gets hit >>> successfully( as expected). >>> >>> [image: Inline image 1] >>> >>> But the *Response.Redirect("Some/URL") *does not work there. >>> >>> Any guidance on this will be highly appreciated. >>> >>> Thanks! >>> >>> -- >>> *Chiran Wijesekara* >>> >>> >>> *Software Engineering Intern | WSO2*Email: [email protected] >>> Mobile: +94712990173web: www.wso2.com >>> >>> [image: https://wso2.com/signature] <https://wso2.com/signature> >>> >>> _______________________________________________ >>> Dev mailing list >>> [email protected] >>> http://wso2.org/cgi-bin/mailman/listinfo/dev >>> >>> >> >> >> -- >> Omindu Rathnaweera >> Senior Software Engineer, WSO2 Inc. >> Mobile: +94 771 197 211 <+94%2077%20119%207211> >> > > > > -- > *Chiran Wijesekara* > > > *Software Engineering Intern | WSO2*Email: [email protected] > Mobile: +94712990173web: www.wso2.com > > [image: https://wso2.com/signature] <https://wso2.com/signature> > Regards, Omindu. -- Omindu Rathnaweera Senior Software Engineer, WSO2 Inc. Mobile: +94 771 197 211
_______________________________________________ Dev mailing list [email protected] http://wso2.org/cgi-bin/mailman/listinfo/dev
