IDP logout customizations

[Cantor, Scott]

On 4/8/19, 9:44 AM, "users on behalf of Manuel Haim" <users-bounces at shibboleth.net on behalf of haim at hrz.uni-marburg.de> wrote:

> On logout, the first endpoint within the metadata is contacted. If this
> is of type "Artifact", the SP will ask the IdP for the SAML message.
> Thus the IdP must have ArtifactResolution enabled

If the IdP itself doesn't support artifacts it shouldn't choose that binding, so the order isn't important, it would simply skip that endpoint.

-- Scott