Set global sign out cookie security using federation cookiehandler configuration

IdentityServer / IdentityServer2

[deprecated] Thinktecture IdentityServer is a light-weight security token service built with .NET 4.5, MVC 4, Web API and WCF.

Other

410 stars 291 forks source link

Set global sign out cookie security using federation cookiehandler configuration #814

Closed hansarnevartdal closed 7 years ago

hansarnevartdal commented 9 years ago

I believe that the idsrvauth cookie and the wsfedsignout cookie should follow the same security setting. This will default to RequireSsl = true, but make it possible to disable this for development and test purposes.

leastprivilege commented 7 years ago

Sorry - this repo is not maintained anymore.