IDP logout customizations
cantor.2 at osu.edu
Mon Apr 8 09:52:15 EDT 2019
On 4/8/19, 9:44 AM, "users on behalf of Manuel Haim" <users-bounces at shibboleth.net on behalf of haim at hrz.uni-marburg.de> wrote:
> On logout, the first endpoint within the metadata is contacted. If this
> is of type "Artifact", the SP will ask the IdP for the SAML message.
> Thus the IdP must have ArtifactResolution enabled
If the IdP itself doesn't support artifacts it shouldn't choose that binding, so the order isn't important, it would simply skip that endpoint.
More information about the users