search

stubbs12 / django-saml2-idp

Automatically exported from code.google.com/p/django-saml2-idp
0 stars 0 forks source link

Verify LogoutRequest Assertion #9

Open GoogleCodeExporter opened 9 years ago

GoogleCodeExporter commented 9 years ago 
The current SingleLogOut view doesn't require a valid SAML LogoutRequest, but 
it should. At present, any hit on the logout URL will logout the current 
browser's user even though no standard LogoutRequest is being passed.

Original issue reported on code.google.com by j...@andersoninnovative.com on 4 Jun 2012 at 9:25