search

aacotroneo / laravel-saml2

A Laravel 5 package for Saml2 integration as a SP (service provider) based on the simple OneLogin toolkit
MIT License
566 stars 237 forks source link

Session index are null in logout request #107

Open marcelobelli opened 6 years ago

marcelobelli commented 6 years ago

Hi,

I'm trying to implement laravel-saml2 in my project and so far login is working like a charm.

My problem is when I have to Logout. When I redirect to 'saml_logout' my SSO server (OpenAM 13) complains that the "session index are null in logout request".

Then I tried using SSOCircle as SSO Server, but logout still doesn't work.

Am I missing something?

The SAML request:

<samlp:LogoutRequest xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"
                     xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"
                     ID="ONELOGIN_ce2c2722b963b27074d3d3e2dcf183f9c0f6c387"
                     Version="2.0"
                     IssueInstant="2017-09-14T19:56:24Z"
                     Destination="http://openam.qos.net.br:8080/openam2/IDPSloRedirect/metaAlias/idp">
  <saml:Issuer>http://saml2.mestra.io/saml2/metadata</saml:Issuer>
  <saml:NameID SPNameQualifier="http://saml2.mestra.io/saml2/metadata"
               Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">http://openam.qos.net.br:8080/openam2/SSOPOST/metaAlias/idp</saml:NameID>

</samlp:LogoutRequest>

The SAML response:

<samlp:LogoutResponse xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"
                      ID="s35f6b98e09351a4b3b24357eae0238da64285f8c"
                      Version="2.0"
                      IssueInstant="2017-09-14T19:56:25Z"
                      Destination="http://saml2.mestra.io/saml2/sls"
                      InResponseTo="ONELOGIN_ce2c2722b963b27074d3d3e2dcf183f9c0f6c387">
  <saml:Issuer xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">http://openam.qos.net.br:8080/openam2</saml:Issuer>
  <samlp:Status xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol">
    <samlp:StatusCode xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"
                      Value="urn:oasis:names:tc:SAML:2.0:status:Requester">
    </samlp:StatusCode>
  </samlp:Status>
</samlp:LogoutResponse>

OpenAM Error: ERROR: IDPSingleLogout.processLogoutRequest: session index are null in logout request

vbridier commented 4 years ago

Same error for me