spring saml: How is LOGOUT handled? Is it mandatory to have logout endpoint in IDP metadata xml? -
i using spring saml implementation. sso circle metadata xml having logout endpoint helps in local logout , global logout. there other idp's interacting , not having logout endpoints in metadata xml.
how should logout handled in these scenarios?
is deleting cookies of request solution of problem or there workaround scenario?
your help in regard much appreciated.
it not mandatory idps have singlelogout endpoint. can perform local logout cleans local cookies calling /saml/logout?local=true. can find details in manual.
spring spring-security logout saml-2.0 spring-saml
No comments:
Post a Comment