Terminate User's IdP Session on ContextCheckInterceptConfiguration
Cantor, Scott
cantor.2 at osu.edu
Mon Jul 22 17:13:11 EDT 2019
On 7/22/19, 4:39 PM, "users on behalf of Cath Messner" <users-bounces at shibboleth.net on behalf of cathm8009 at gmail.com> wrote:
> If a user does not meet the authentication policy and denied access -- is it also possible to terminate the user's IdP
> session (either only IdP or SLO)?
Not any currently supported way other than just a view/redirect to the logout endpoint, which is easily circumventable. There are public APIs involved to do it, but nothing readily usable without a high degree of expertise.
-- Scott
More information about the users
mailing list