[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]
Subject: Re: [saml-dev] Single signout from IDP side
On 3/12/14, 5:12 AM, "Phalguni Mukherjee"
<phalgunimukherjee1007@gmail.com> wrote:If you mean a SOAP based logout request, the answer is that you either
>When the user have a session timeout in IDP, it notifies SP about it, how
>to get the SP side session and invalidate in such notification, as
>notification request is a new request from IDP to SP
come up with a way, or you don't support it. Basically, you need server
side state/mappings, or you implement temporary server state that holds
onto the request so you can prevent the session from being used the next
time the session cookie shows up.
-- Scott
[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]