[keycloak-user] Re :Keycloak Idp SLO response location

Dmitry Telegin dt at acutus.pro
Mon Nov 19 10:21:37 EST 2018


Hello Sylvain,

Seems like this feature is not supported in Keycloak yet: https://issues.jboss.org/browse/KEYCLOAK-6822

Dmitry

On Mon, 2018-11-19 at 10:19 +0000, ge sly wrote:
> "They are optional attributes in the SAML spec"
>  I mean the ResponseLocation attribute. Where can I configure it?
> 
> 
> 
> Le sam., nov. 17, 2018 à 8:43, ge sly
> > <slyge2001 at yahoo.fr> a écrit :
> Hi Dmitry 
> 
> Yes I saw it but here is only 2 urls:
> 
> Logout Service POST Binding URL
> POST Binding URL for the Logout Service.
> 
> Logout Service Redirect Binding URL
> Redirect Binding URL for the Logout Service
> 
> 
> 
> Where can I set the 
> 
> Logout Service POST Binding Response URL
> 
> and
> 
> Logout Service Redirect Response Binding URL
> 
> 
> They are optional attributes in the SAML spec 
> 
> <complexType name="EndpointType">
> <sequence>
> <any namespace="##other"processContents="lax" minOccurs="0"maxOccurs="unbounded"/>
> </sequence>
> <attribute name="Binding" type="anyURI"use="required"/>
> <attribute name="Location" type="anyURI"use="required"/>
> <attribute name="ResponseLocation"type="anyURI" use="optional"/>
> <anyAttribute namespace="##other"processContents="lax"/>
> </complexType>
> 
> Thanks
> Regards
> Sylvain
> 
> 
> Le sam., nov. 17, 2018 à 1:15, Dmitry Telegin
> > <dt at acutus.pro> a écrit :
> Hello Sylvain,
> 
> These settings are under the "Fine Grain SAML Endpoint Configuration" section in the client settings.
> 
> Cheers,
> Dmitry Telegin
> CTO, Acutus s.r.o.
> Keycloak Consulting and Training
> 
> Pod lipami street 339/52, 130 00 Prague 3, Czech Republic
> +42 (022) 888-30-71
> > E-mail: info at acutus.pro 
> 
> On Fri, 2018-11-16 at 22:19 +0000, ge sly wrote:
>> >   Hi
> > I am tringle to configure Keycloak as an Idp with OIOSAML as a SP.
> > OIOSAML has 2 urls for the single logout:
> > <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://localhost:8443/oiosaml2-demo.java/saml/LogoutServiceHTTPPost" ResponseLocation="https://localhost:8443/oiosaml2-demo.java/saml/LogoutServiceHTTPRedirectResponse"/>
> > I dont see how to enter the Location and the ResponseLocation in the Clients config. If I import the metadata only the Location is used. 
> > Thanks 
> > Regards Sylvain
> > Envoyé depuis Yahoo Mail pour Android  
> 
> > _______________________________________________
> > keycloak-user mailing list
> > keycloak-user at lists.jboss.org
> > https://lists.jboss.org/mailman/listinfo/keycloak-user
> 


More information about the keycloak-user mailing list