[17:01:20 DBG] Initiating logout, checking requirements for federated logout
Issuer of LogoutNameIdentifier claim (should be Idp entity id):
Issuer is a known Idp: False
Session index claim (should have a value):
Idp has SingleLogoutServiceUrl:
There is a signingCertificate in SPOptions: False
Idp configured to DisableOutboundLogoutRequests (should be false):
[17:01:20 INF] Federated logout not possible, redirecting to post-logout and clearing local session
@AndersAbel
I am using
Sustainsys.Saml2.AspNetCore2 Version="2.9.0"
in a .net 6 blazor app.Registration This is a minimized example with the same behavior. I know the cert will be needed for federated logout.
In the app, and on razor pages I have access to all the claims.
Users logout by clicking a link
Result:
I assume either the request user is null or for some reason the cookie can't be read during logout, based on https://github.com/Sustainsys/Saml2/blob/v2/Sustainsys.Saml2/WebSSO/LogOutCommand.cs#L166-L170. This looks like the same issue as #1356 but the apparent resolution seems incomplete, or I just don't understand what it is supposed to do.