Details
-
New Feature
-
Status: Open
-
Minor
-
Resolution: Unresolved
-
None
-
None
-
None
Description
The SAML Authentication Extension does not seem to have a logout function built in. This will result in a loop. Steps to reproduce:
- connect to guacamole ULR
- Automatic redirect to IDP Signin Page happens
- login via SAML IDP to Guacamole
- Click Logoff in Guacamole
- Redirect to Guacamole Start-Page happens
- Redirect to IDP Signin Page
- User gets signed in automatically as the session on the IDP is still existing
The correct behaviour must be:
- connect to guacamole ULR
- Automatic redirect to IDP Signin Page happens
- login via SAML IDP to Guacamole
- Click Logoff in Guacamole
- Redirecting to configured IDP Logoff URL
- IDP destroys session and redirects to Guacamole start page
- Redirect to IDP Signin Page
- User gets signed in automatically as the session on the IDP is still existing
Attachments
Issue Links
- Blocked
-
GUACAMOLE-519 Implement Single Logout on OpenID Extension
- Open
- Dependency
-
GUACAMOLE-680 Ensure logout works as expected when using SSO
- Closed