Closed damionbroadaway closed 2 years ago
Hi @damionbroadaway!
As I see, your security.firewalls.app.pattern doesn't handle (match) /saml/logout
URI.
I see. That is a bit confusing from the documentation. I was unaware that the logout path had to be included.
I will give it a try.
That almost worked. It directed me to Google. But they are telling me it's a malformed_request
.
Could that still be the result of my configuration?
On the page:
null. That’s an error. Error parsing the request, malformed_request: The SAML request is malformed. That’s all we know.
Here is the SAML Logout Request:
<samlp:LogoutRequest xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"
xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"
ID="ONELOGIN_bc4ceeb965f18f4583e7a688cb7958725c4b301e"
Version="2.0"
IssueInstant="2022-05-12T21:33:02Z"
Destination="https://accounts.google.com/o/saml2/idp?idpid=REDACTED"
>
<saml:Issuer>https://my-domain-is-removed/saml/metadata</saml:Issuer>
<saml:NameID>my.user@email.com</saml:NameID>
<samlp:SessionIndex>_68b802b527f1ab367d72b91b03b66749</samlp:SessionIndex>
</samlp:LogoutRequest>
Google Workspace does not support SLO because it will log them out of all Google services.
Looks like I can use Symfony's default logout just to remove the session.
Closing. Thank you for the help.
Hello there.
Thank you for the bundle. It's been very helpful. However, I've hit a snag right at the end. I can't logout.
Can't seem to find much in the documentation other than to put a few lines in the config. Which I believe I've done.
Context:
Application is mostly an API. We are adding a few user-facing pages. Isolated to
/dashboard/*
and/audit/*
. All other routes have their own auth for the API functionality.Currently, everything works. Catches the auth requirement, forwards to Google, back to use, and all the right paths are secure.
But trying to logout at
/saml/logout
gives the error found below. Additionally, you will find the current contents of the bundle config and the security config. It is accurate except for what you see as REDACTED.Any help is appreciated.
Symfony:
5.4.6
OneloginSamlBundle:2.8.0
SSO Provider: GoogleError Message:
security.yaml
:hslavich_onelogin_saml.yanl
: