10:25 p.m.
I have a Keycloak Security Adaptor setup with a logout URL "/sso/logout".
The user logins in using to my application using an IDP, and then logs out
by POSTing to the /sso/logout the - they are redirected to the login page.
However when attempted to login again, the user doesn't need to
reauthenticate. It seems Spring doesn't logout from the IDP.
Is there a simple way to get Spring to logout from the IDP? Should I change
the logout URL?
12:53 p.m.
Hello Hylton,
Something tells me you've got an OIDC client and a SAML IdP :)
Make sure you have Single Logout Service URL configured and backchannel logout enabled for
your IdP in Keycloak. You may also need to explicitly allow single logout functionality in
the IdP itself.
Also I suggest that you use network monitor to make sure that the proper logout request is
sent from Keycloak to the IdP.
Good luck,
Dmitry Telegin
CTO, Acutus s.r.o.
Keycloak Consulting and Training
Pod lipami street 339/52, 130 00 Prague 3, Czech Republic
+42 (022) 888-30-71
E-mail: info(a)acutus.pro
On Thu, 2019-01-31 at 06:25 +0200, Hylton Peimer wrote:
I have a Keycloak Security Adaptor setup with a logout URL
"/sso/logout".
The user logins in using to my application using an IDP, and then logs out
by POSTing to the /sso/logout the - they are redirected to the login page.
However when attempted to login again, the user doesn't need to
reauthenticate. It seems Spring doesn't logout from the IDP.
Is there a simple way to get Spring to logout from the IDP? Should I change
the logout URL?
_______________________________________________
keycloak-user mailing list
keycloak-user(a)lists.jboss.org
https://lists.jboss.org/mailman/listinfo/keycloak-user
2168
days inactive
2169
days old
1 comments
2 participants
participants (2)
-
Dmitry Telegin -
Hylton Peimer