Ability to completely disable the singleLogoutService by not specifyi…

…ng this property in the settings
aacotroneo · Jan 21, 2017 · 7b35373 · 7b35373
1 parent 93d1fc4
commit 7b35373
Show file tree

Hide file tree

Showing 2 changed files with 3 additions and 1 deletion.
diff --git a/src/Aacotroneo/Saml2/Saml2ServiceProvider.php b/src/Aacotroneo/Saml2/Saml2ServiceProvider.php
@@ -47,7 +47,8 @@ public function register()
             if (empty($config['sp']['assertionConsumerService']['url'])) {
                 $config['sp']['assertionConsumerService']['url'] = URL::route('saml_acs');
             }
-            if (empty($config['sp']['singleLogoutService']['url'])) {
+            if (!empty($config['sp']['singleLogoutService']) &&
+                 empty($config['sp']['singleLogoutService']['url'])) {
                 $config['sp']['singleLogoutService']['url'] = URL::route('saml_sls');
             }
 

diff --git a/src/config/saml2_settings.php b/src/config/saml2_settings.php
@@ -93,6 +93,7 @@
         ),
         // Specifies info about where and how the <Logout Response> message MUST be
         // returned to the requester, in this case our SP.
+        // Remove this part to not include any URL Location in the metadata.
         'singleLogoutService' => array(
             // URL Location where the <Response> from the IdP will be returned,
             // using HTTP-Redirect binding.