Comments (4)
OK. I played around with it in the Identity server v1 environment.
With upstream IdP
When wsignout1.0 arrives a redirect to the upstream IP is required. In theory only one per DOM session.
But the [optional] wreply parameter of the incoming wsignout1.0 must be copied. That way the upstream
IP can go to it in the end.
IdSrv is the IP
IdSrv response is a page that intitates a GET from the browser to all downstream RPs
(get "RP-enpoint-url?wa=wsignoutcleunup1.0" )
The response to wsignoutcleanup can be img or html. ADFS v2 uses:
<iframe class="NotShown" src="RP-enpoint-url?wa=wsignoutcleunup1.0"></iframe>
.NotShown { visibility: hidden; height: 1px; width: 1px; }
If there is a wreply=destination-url, then, with some javascript, the IdSrv response page should also redirect to the url in wreply. Typically OnLoad.
When wsignoutcleanup arrives, typically from above, but sometimes from below to clear partial state.
Same as being the top, but not the wreply thing.....
from identityserver2.
Hmm, my iframe was lost....
ADFSv2 uses per RP an iframe element with class="NotShown" src="RP-EndPoint-url?wa=wsignoutcleanup1.0"
from identityserver2.
Hello,
I have set up Federation between two instances of IdS and use HRD too. I have issues with Federated Sign Out, in both Hrd and WsFederation controllers the SignOutCleanupRequestMessage message types are not handled. The image source in the Federated Sign Out page is the following : https://localhost/FirstIdentityServer/issue/wsfed?wa=wsignoutcleanup1.0 (or https://localhost/FirstIdentityServer/issue/hrd?wa=wsignoutcleanup1.0).
Is this a bug or I have messed up some configurations?
from identityserver2.
SignOut is not fully done yet. It's on my todo.
from identityserver2.
Related Issues (20)
- How to redirect to a custom page on WS Federation signout in MVC app
- ID4022: The key needed to decrypt the encrypted security token could not be resolved. Ensure that the SecurityTokenResolver is populated with the required key
- Link and GitHub Pages broken
- Federation with External Identity Providers HOT 1
- Disable SSL and Mixed Mode Security
- User Roles in a Azure AD SSO Scenario
- Missing "Role" as a claim in SharePoint server
- Pass whr to Identity Provider HOT 2
- Win10 AAD sign in - unsupported GET for WS-Trust MEX
- Redirects to /account/signin HOT 1
- Could not find a base address that matches scheme http for the endpoint with binding CertificateWSTrustBinding
- IdentityServer v2 HOT 1
- Thinktecture.IdentityModel.45 is not in git
- login loop
- 'ClaimsIdentity.BootstrapContext' could not be mapped
- WIF10201: No valid key mapping found for securityToken
- "Authorization for token issuance failed because the user is anonymous" when calling service from console client.
- IdentityServer2 integration with PingFederate using WS-Federation protocol HOT 1
- Clustering IdentityServer v2 for high availability
- Disappearing Client Secret HOT 2
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from identityserver2.