Open Liberty is a highly composable, fast to start, dynamic application server runtime environment
Eclipse Public License 2.0
1.15k
stars
590
forks
source link
Logout from personalTokenManagement URL does not work when configured with SAML IDP #18125
Open
shubjit opened 3 years ago
Describe the bug Our Enterprise applications (RP) are configured with a Liberty OpenID Provider which is further configured to a SAML IDP. https://www.ibm.com/docs/en/was-liberty/nd?topic=liberty-configuring-saml-web-browser-sso-in
We are utilising Multi-Factor Authentication via a SAML IDP and as this works only for Browser based clients, we are utilising the Liberty Application Password Feature for Native Clients. We are following the instructions from the following URL: https://openliberty.io/blog/2019/09/13/microprofile-reactive-messaging-19009.html#oidc
Most of the features work fine, but the Logout button on this Liberty page does not work. https://Liberty_OP/oidc/endpoint/OP/personalTokenManagement
Steps to Reproduce
Please note: when Liberty OP is not delegating to a SAML IDP, the logout seems to work fine.
Expected behavior Logout from /personalTokenManagement should end the session and logout all apps on the Liberty OP
Diagnostic information:
Additional context Add any other context about the problem here.