Cantor, Scott cantor.2 at osu.edu
Thu Aug 13 17:31:42 UTC 2020

On 8/13/20, 12:50 PM, "users on behalf of IAM David Bantz" <users-bounces at shibboleth.net on behalf of dabantz at alaska.edu> wrote:

> I wonder about rewiring calls to the Logout profile to allow the user the option to destroy the SSO session or not; or
> even "just saying No" to destroying the SSO session. Have you dealt with this situation? How does your IdP respond to 
> SPs triggering 'global' logout instead of just ending their SP session?

The logout code already supports that, the V4 default views contain all that logic and options to implement various controls if you want them.

Users are still going to be annoyed.

And there are a ton of broken apps like this, and a ton of broken brains of people that actually claim this is necessary. Arguing with people over sessions and logout is generally a waste of time these days. You're better off just not supporting it and blaming us.

-- Scott

More information about the users mailing list