Feature request: OpenID Connect RP-Initiated Logout
Bug #2028004 reported by
Spencer Colton
This bug affects 1 person
| Affects | Status | Importance | Assigned to | Milestone | |
|---|---|---|---|---|---|
| Landscape Server |
New
|
Undecided
|
Unassigned | ||
Bug Description
Currently, when an oidc-logout-url is provided in the settings and OpenID Connect authentication is otherwise configured, Landscape redirects to that URL when logging out.
Per the OpenID spec, the "id_token_hint" query parameter (a copy of the original ID token issued to the RP when logging in) is RECOMMENDED, but seems to be required by my IdP as well as many others.
It would be nice if Landscape could provide this value so that OpenID logouts would work correctly.
| information type: | Proprietary → Public |
To post a comment you must log in.
