The error you show come from the IdP, Jenkins only make an HTTP redirection to the URL that it is in the configuration, for some reason your IdP tell that the request is incorrect, my guess it is that your IdP does not implement this logout service by HTTP-redirect, or it needs some parameters in the request, because of that it returns an invalid request (probably is an HTTP error code 400). So you have to contact to your IdP and ensure that they implement the SingleLogoutService in that URL and they support `SAML:2.0:bindings:HTTP-Redirect` without any parameter in the URL.
El jueves, 30 de enero de 2020, 12:03:26 (UTC+1), Marcin Szymański escribió: > > Hi Ivan, >> > > Thanks for reply. > > This is how look like my SingleLogoutService section in IdP metadata. > <SingleLogoutService > Location="https://<secretlink>/keycloak/auth/realms/idesuite/protocol/saml" > Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect"/> > > I treid also by setting Logout URL in jenkins - same results :/ > > My settings from Keycloak: > *Login Service Redirect Binding URL - * > https://<link_to_jenkins>/securityRealm/finishLogin > -- You received this message because you are subscribed to the Google Groups "Jenkins Users" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To view this discussion on the web visit https://groups.google.com/d/msgid/jenkinsci-users/aa25dbfa-14db-4742-986f-52c7bc6594a5%40googlegroups.com.
