[keycloak-user] Keycloak as SAML IdP - Google sign-out problem

Rodolfo De Nadai rdenadai at gmail.com
Sun Jun 24 06:15:53 EDT 2018


I was able to make it work... point the logout url of Google to
openid-connect logout url.


Em sex, 22 de jun de 2018 às 05:01, Tiemen Ruiten <t.ruiten at rdmedia.com>
escreveu:

> Signout is working for us, I initially used the same guide but had to make
> some changes. My setup differs in the following places:
>
> Include OneTimeUse Condition - off
> Optimize REDIRECT signing key lookup - off
> SAML Signature Key Name - NONE
> Bse URL - /auth/realms/{realmname}/protocol/saml/clients/googleapps
>  (note the lack of &RelayState=true)
>
> I set the signout URL in the Google Apps dashboard to
> https://ourdomain.tld/auth/realms/{realmname}/account/
>
> On 19 June 2018 at 22:12, Rodolfo De Nadai <rdenadai at gmail.com> wrote:
>
>> Hi,
>>
>> i'm configuring my keycloak installation as an IdP and Google apps as an
>> SSO.
>>
>> I'm able to login but when trying to logout i got no success...
>>
>> My configuration follows the described here:
>>
>> https://stories.scandiweb.com/sign-in-to-google-apps-using-saml-protocol-and-keycloak-as-identity-provider-79227fd2e063
>>
>> There were a thread in the mailing list which was able to login also, but
>> didn't mention logout process. As i thought it should be almost as
>> transparent, since no documentation say anything, is begging to transform
>> in a problem.
>>
>> If someone could help or point in some direction i appreciate.
>>
>> thanks
>>
> _______________________________________________
>> keycloak-user mailing list
>> keycloak-user at lists.jboss.org
>> https://lists.jboss.org/mailman/listinfo/keycloak-user
>>
>
>
>
> --
> Tiemen Ruiten
> Systems Engineer
> R&D Media
>


More information about the keycloak-user mailing list