问题
I am using Spring SAML implementation. SSO circle metadata xml was having logout endpoint which helps in local logout and global logout. But there are some other IDP's which I am interacting with and are not having logout endpoints in their metadata xml.
How should LOGOUT be handled in these scenarios?
Is deleting cookies of the request the only solution of this problem or is there any workaround for this scenario?
Your help in this regard is much appreciated.
回答1:
It is not mandatory for your IDPs to have a SingleLogout endpoint. You can perform local logout which cleans local cookies by calling /saml/logout?local=true. You can find all the details in the manual.
来源:https://stackoverflow.com/questions/26356483/spring-saml-how-is-logout-handled-is-it-mandatory-to-have-logout-endpoint-in-i