Uploaded image for project: 'MidPoint'
  1. MidPoint
  2. MID-1867

SSO integration and logout - redirection to SSO logout page

    XMLWordPrintable

Details

    • Improvement
    • Status: Closed
    • Minor
    • Resolution: Fixed
    • 3.0 (Newton)
    • 3.0 (Newton)
    • None
    • None

    Description

      SSO configuration allows to set midPoint to use SSO information and log in users. Policy agent makes the decisions.

      When trying to logout, the default configuration does not logout the user from SSO.

      I've managed to change logout configuration in ctx-web-security.xml to log user from SSO (OpenAM) after logging out of midpoint, but at the price of commenting success-handler-ref. Need to use both.

      This is my current config which does NOT use success-handler-ref:

      <logout logout-url="/j_spring_security_logout" invalidate-session="true" logout-success-url="http://ssoserver/logout" />

      We should allow to use the single logout page WITH the success-handler-ref to correctly audit the logout operation...

      Spring security does not allow using logout-success-url and success-handler-ref together.

      Attachments

        Issue Links

          Activity

            People

              vix Ivan Noris
              vix Ivan Noris
              Votes:
              0 Vote for this issue
              Watchers:
              2 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: