[mitreid-connect] Is the RP-Initiated Logout scenario already implemented?

Michael Furman michael_furman at hotmail.com
Wed Sep 28 07:33:15 EDT 2016 

Hi Justin,

What about the following workaround the full spec will be implemented: upon the RP initiated logout to access IDP from a browser and to close (cleanup) the IDP Jsession.
In this case it will not be possible to access to tokens since access to IDP will require authentication.
Will it work?


Thank you in advance for your help.
Best regards,
   Michael


________________________________
From: mitreid-connect-bounces at mit.edu <mitreid-connect-bounces at mit.edu> on behalf of Michael Furman <michael_furman at hotmail.com>
Sent: Thursday, September 22, 2016 3:55 PM
To: Justin Richer
Cc: mitreid-connect at mit.edu
Subject: Re: [mitreid-connect] Is the RP-Initiated Logout scenario already implemented?


Thank you for the reply!
May be I was confused since I see it was implemented in the branch and it is possible to know the configuration.
Best regards,
Michael

On Sep 22, 2016 2:51 PM, Justin Richer <jricher at mit.edu> wrote:

There's no answer to your question because that feature is not implemented. We can't tell you how it will be implemented in the future, and if we did, it wouldn't do you any good until then anyway.


 -- Justin

On 9/22/2016 4:52 AM, Michael Furman wrote:

Can anybody help with this question?


________________________________
From: mitreid-connect-bounces at mit.edu<mailto:mitreid-connect-bounces at mit.edu> <mitreid-connect-bounces at mit.edu><mailto:mitreid-connect-bounces at mit.edu> on behalf of Michael Furman <michael_furman at hotmail.com><mailto:michael_furman at hotmail.com>
Sent: Wednesday, September 21, 2016 9:56 AM
To: Justin Richer
Cc: mitreid-connect at mit.edu<mailto:mitreid-connect at mit.edu>
Subject: Re: [mitreid-connect] Is the RP-Initiated Logout scenario already implemented?


Clarification: I mean when the feature will be merged (I do understand that it still not in the master branch).


________________________________
From: mitreid-connect-bounces at mit.edu<mailto:mitreid-connect-bounces at mit.edu> <mitreid-connect-bounces at mit.edu><mailto:mitreid-connect-bounces at mit.edu> on behalf of Michael Furman <michael_furman at hotmail.com><mailto:michael_furman at hotmail.com>
Sent: Wednesday, September 21, 2016 9:53 AM
To: Justin Richer
Cc: mitreid-connect at mit.edu<mailto:mitreid-connect at mit.edu>
Subject: Re: [mitreid-connect] Is the RP-Initiated Logout scenario already implemented?


Hi Justin,

Thank you for your reply!

Ho RP initiated logout is performed?

Should call from a browser to end_session_endpoint of IDP (as described here https://openid.net/specs/openid-connect-session-1_0.html#RPLogout)?
How is possible to configure end_session_endpoint on IDP?

Best regards,

   Michael

________________________________
From: Justin Richer <jricher at mit.edu><mailto:jricher at mit.edu>
Sent: Wednesday, September 7, 2016 6:33 PM
To: Michael Furman
Cc: mitreid-connect at mit.edu<mailto:mitreid-connect at mit.edu>
Subject: Re: [mitreid-connect] Is the RP-Initiated Logout scenario already implemented?

We have no specific dates for a 1.3 release. The snapshot will work (it’s not very far diverged from the 1.2 branch yet) but it’s going to change without warning and without backwards compatibility guarantees, so use it at your own risk.

 — Justin

On Sep 7, 2016, at 10:50 AM, Michael Furman <michael_furman at hotmail.com<mailto:michael_furman at hotmail.com>> wrote:

Hi Justin,
Thank you for your reply!
When do you think 1.3 will be released (approximately)?
Is 1.3-snapshot mature enough today?
Best regards,
   Michael

________________________________
From: Justin Richer <jricher at mit.edu<mailto:jricher at mit.edu>>
Sent: Tuesday, September 6, 2016 5:46 PM
To: Michael Furman
Cc: mitreid-connect at mit.edu<mailto:mitreid-connect at mit.edu>
Subject: Re: [mitreid-connect] Is the RP-Initiated Logout scenario already implemented?

We haven’t incorporated that pull request yet or implemented the endpoint in the core. We’re planning to consider it (and other outstanding pull requests) for inclusion in 1.3 as we can.

 — Justin

On Sep 5, 2016, at 6:26 AM, Michael Furman <michael_furman at hotmail.com<mailto:michael_furman at hotmail.com>> wrote:

Hi all,
Just want to recall the question asked here https://github.com/mitreid-connect/OpenID-Connect-Java-Spring-Server/issues/856.
Is the following change already part of the main branch: https://github.com/mitreid-connect/OpenID-Connect-Java-Spring-Server/pull/972
How to configure and to execute the RP-Initiated Logout?
Thank you in advance for your help.
Best regards,
   Michael

_______________________________________________
mitreid-connect mailing list
mitreid-connect at mit.edu<mailto:mitreid-connect at mit.edu>
http://mailman.mit.edu/mailman/listinfo/mitreid-connect



-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://mailman.mit.edu/pipermail/mitreid-connect/attachments/20160928/eae9854b/attachment.html

More information about the mitreid-connect mailing list