foobarable
commented
6 years ago We first would have to define what we want: Please read
https://wiki.shibboleth.net/confluence/display/CONCEPT/SLOIssues
(I suggest reading it twice :D)
Closed michzimny closed 6 years ago
foobarable
commented
6 years ago We first would have to define what we want: Please read
https://wiki.shibboleth.net/confluence/display/CONCEPT/SLOIssues
(I suggest reading it twice :D)
michzimny
commented
6 years ago Ok, good point.
I don't know yet what we want :)
ebocchi
commented
6 years ago Thanks for bringing this up.
It is not critical for the time being. I will redirect to up2u homepage as logout action, even though no actual logout takes place. In future, it would be useful to have a, e.g, 'https://sso.up2university.eu/shibboleth/signout' to be called by every service behind SSO in order to log out users.
foobarable
commented
6 years ago The thing is, then we would need to send the logout to all other connected SPs of the session to log the user out in every other service as well. It's not as trivial as it seems. Please read the article ;)
On 03/09/2018 03:24 PM, Enrico Bocchi wrote:
Thanks for bringing this up.
It is not critical for the time being. I will redirect to up2u homepage https://www.up2university.eu as logout action, even though no actual logout takes place. In future, it would be useful to have a, e.g, 'https://sso.up2university.eu/shibboleth/signout' to be called by every service behind SSO in order to log out users.
— You are receiving this because you were assigned. Reply to this email directly, view it on GitHub https://github.com/up2university/single-sign-on/issues/24#issuecomment-371826037, or mute the thread https://github.com/notifications/unsubscribe-auth/AA2hl34jo0zzbd7sNCnfSAGEBHWxjCcWks5tcpCwgaJpZM4SkIei.
michzimny
commented
6 years ago Currently, a user is able to log out from Moodle but is not able to log out from CERNBox.
@athird or @foobarable, could you tell us how the log-out is implemented in Moodle? Could we do it in the same way in CERNBox?
foobarable
commented
6 years ago Hi, we would need the owncloud session to reuse the shibboleth session. It's not that easy and we have not solved it for our owncloud yet either.
On 05/23/2018 03:32 PM, Michał Zimniewicz wrote:
Currently, a user is able to log out from Moodle but is not able to log out from CERNBox.
@athird https://github.com/athird or @foobarable https://github.com/foobarable, could you tell us how the log-out is implemented in Moodle? Could we do it in the same way in CERNBox?
— You are receiving this because you were mentioned. Reply to this email directly, view it on GitHub https://github.com/up2university/single-sign-on/issues/24#issuecomment-391347881, or mute the thread https://github.com/notifications/unsubscribe-auth/AA2hl5rpQ8sLtcG7wdfO5HBB61vIiZiGks5t1WUEgaJpZM4SkIei.
michzimny
commented
6 years ago I'm closing this as it seems it's not necessary on the SSO side.
Is there any way to log out from SSO, meaning to invalidate a user session?
If so, we could add the information to the docs.
CC @ebocchi