Skip to content

initial support for single logout in s2repoze #44

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 5 commits into from
Jun 22, 2013
Merged

initial support for single logout in s2repoze #44

merged 5 commits into from
Jun 22, 2013

Conversation

sigmunau
Copy link
Contributor

No description provided.

sigmunau added 5 commits June 3, 2013 16:46
@sigmunau
Implement initiating logout from s2repoze plugin.
f3ec1cd 
Adds a new repoze config option path_logout to the challenge decider
plugin. When a request is received on this url a global logout request
is initiated. Responses to this request is received on the
single_logout_service endpoint of the sp as configured in saml config
of the sp. Tested with only on IdP and only using HTTP_REDIRECT bindings

TODO: handle receiving logout requests on the single_logout_service endpoint
@sigmunau
Allow graceful handling of auth_tkt cookies outliving saml clients cache
11b777f 
If for some reason the session cookie outlives the saml clients cache,
for instance if the webservice is restarted there could be an
inconsistent state where the user is authenticated but saml attributes
are missing and saml logout requests will fail. By using only saml2sp
as authenticator plugin and repoze.who 2.0 this little check will work
around that and require a new login in this case
@sigmunau
Added support for receiving SAMLRequests on the single_logout endpoint
8b69c35
@sigmunau
Merge remote-tracking branch 'upstream/master'
164605e
@sigmunau
Loosen explicit requirement on repoze.who 1.0.18 as 2.0 seems to work…
523dfbb 
… fine
rohe pushed a commit that referenced this pull request Jun 22, 2013
Merge pull request #44 from sigmunau/master
dfcfda5 
initial support for single logout in s2repoze
@rohe rohe merged commit dfcfda5 into IdentityPython:master Jun 22, 2013
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@sigmunau @rohe