Skip to content

SAML2 logout feedback #29

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
wants to merge 10 commits into
base: saml2-logout
Choose a base branch
from
Open

SAML2 logout feedback #29

wants to merge 10 commits into from

Conversation

@eleftherias
Copy link

No description provided.

eleftherias
eleftherias commented Feb 26, 2021
View reviewed changes
samples/boot/saml2login/src/main/java/sample/SecurityConfig.java Outdated
return new Saml2AssertingPartyInitiatedLogoutSuccessHandler(responseResolver());
}

@Bean
Copy link
Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

It seems like requestResolver() and requestResolver() don't need to be beans

samples/boot/saml2login/src/main/java/sample/SecurityConfig.java
return http.build();
}

@Bean
Copy link
Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

It seems like the logoutSuccessHandler doesn't need to be a bean either.

...security/saml2/provider/service/web/authentication/logout/OpenSamlLogoutRequestResolver.java
public OpenSamlLogoutRequestSpec resolveLogoutRequest(HttpServletRequest request,
RelyingPartyRegistration registration, Authentication authentication) {
return new OpenSamlLogoutRequestSpec(registration)
.destination(registration.getAssertingPartyDetails().getSingleLogoutServiceLocation())
Copy link
Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Why do only destination, issuer and name have default values?

...security/saml2/provider/service/web/authentication/logout/OpenSamlLogoutRequestResolver.java
.name(authentication.getName());
}

public class OpenSamlLogoutRequestSpec implements Saml2LogoutRequestSpec<OpenSamlLogoutRequestSpec> {
Copy link
Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Does it make sense to allow users to conveniently change the destination, issuer and name?
Is there a use case where they would want those values to be different than what they set up in the RelyingPartyRegistration?

@jzheaux jzheaux force-pushed the saml2-logout branch 7 times, most recently from a88c1b1 to ddf8e7a Compare March 5, 2021 23:08
@jzheaux jzheaux force-pushed the saml2-logout branch 2 times, most recently from 2ee9b25 to f16548f Compare March 30, 2021 23:42
@jzheaux jzheaux force-pushed the saml2-logout branch 2 times, most recently from ebf88c5 to 2c6c988 Compare May 11, 2021 23:30
@jzheaux jzheaux force-pushed the saml2-logout branch 6 times, most recently from d547bad to 86f6b95 Compare July 16, 2021 00:20
@jzheaux jzheaux force-pushed the saml2-logout branch 2 times, most recently from 4d82f8c to 6038bdb Compare July 16, 2021 06:45
@jzheaux jzheaux force-pushed the saml2-logout branch 3 times, most recently from 25d7d4b to a96844b Compare August 9, 2021 18:35
@jzheaux jzheaux force-pushed the saml2-logout branch 3 times, most recently from 30bb291 to 4b29450 Compare September 13, 2021 22:22
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@eleftherias @jzheaux