Implement Proper SLO Propagation to oxAuth

Question

Implement Proper SLO Propagation to oxAuth

Opened this issue 2 years ago · 1 comments

Currently, when the a SAML RP Client initiates SLO, after completion , only the user's shibboleth IDP sessions are terminated.
This leaves the user's OIDC sessions still active.
The aim of this ticket is to provide a corrective action to this, ensuring that all OIDC and SAML user sessions are terminated.

Answer 1 · 2023-03-23T16:13:18.000Z

Are you going to call OpenID Front channel logout too? Make sure there is a feature_flag for this configuration!