Terminate User's IdP Session on ContextCheckInterceptConfiguration

Cantor, Scott cantor.2 at osu.edu
Mon Jul 22 17:13:11 EDT 2019

On 7/22/19, 4:39 PM, "users on behalf of Cath Messner" <users-bounces at shibboleth.net on behalf of cathm8009 at gmail.com> wrote:

> If a user does not meet the authentication policy and denied access -- is it also possible to terminate the user's IdP
> session (either only IdP or SLO)?

Not any currently supported way other than just a view/redirect to the logout endpoint, which is easily circumventable. There are public APIs involved to do it, but nothing readily usable without a high degree of expertise.
-- Scott

More information about the users mailing list