-
-
Notifications
You must be signed in to change notification settings - Fork 217
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
single logout service #185
Comments
@franklinjjeng I haven't completed the example repository yet, but most of the common use cases that you can find in the test file, starting from L503. Line 503 in 1d78763
|
Thanks! I appreciate the quick response. This looks to be what I needed, I'll play around with it some. Also off topic, but wondering if there is a quick way to turn off X509Certificate requirement in the SAMLResponse (I can open a new question/issue if needed) |
@franklinjjeng There is no option to turn it off right now. I am also considering to make the signature optional for testing use. For feature request, please open a new issue. Thanks. |
Since this issue is not updated for a while, I will close this first. Please reopen it if needed. |
Hi @tngan. I'm having trouble passing both the emailAddress and the sessionIndex in the logout redirect saml response. It seems to be passing the emailAddress without issue, but the sessionIndex is getting left out. I'm attempting to build the redirect logout request below I based this off of what I saw in logoutRequestRedirectURL in binding-redirect.ts
|
I'm waiting for a logout example. |
@tngan, Does samlify support IDP-logout? If yes, Can you please provide me an example for such. If not, when i can expect it to be a part of samlify release. |
samlify Version: 2.7.4 @franklinjjeng @tngan It seems samlify is already able to create logout request including
<samlp:LogoutRequest
xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"
xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"
ID="_c063b219-f6e3-42af-a285-5f8602ff1458"
Version="2.0"
IssueInstant="2020-07-21T09:49:07.903Z"
Destination="http://localhost:8080/auth/realms/demo/protocol/saml">
<saml:Issuer>https://localhost:9090/samlify/metadata</saml:Issuer>
<saml:NameID
Format="urn:oasis:names:tc:SAML:1.1:nameid-format:emailAddress">email@xx.com
</saml:NameID>
</samlp:LogoutRequest> |
Unfortunately I don't have access to the code base that I built this with, but looking at past conversations, it looks like you need to create a custom template for the sessionId to appear. https://samlify.js.org/#/template?id=custom-templates. |
Does anyone have working example for createLogoutRequest or any advise. I can't find solution. My idp is Shibboleth instance, but I have not access to check how it should work . |
Wondering why is this issue Closed ? Documentation seems missing this examples etc. |
Hi @tngan, I'm utilizing your library and loving it.
I was just curious about single logout service. I noticed in issue #170 and #105 there are references that it exists but I can't seem to find anything in the code base to create logout requests through the SP or even accept IdP-initiated requests. I was wondering if you would be able to point me in the direction of them.
Thanks for your time.
The text was updated successfully, but these errors were encountered: