SAML 2.0 LogoutRequest
I am working on handling LogOutRequest from a repl开发者_开发问答ying party on the STS side. I can parse LogoutRequest, delete the cookie and generate a LogoutResponse. The problem is where to send the LogoutResponse, I did not find the information about reply url. Any ideas?
SingleLogoutService information is defined as part of the SAML 2.0 metadata that partners would exchange during setup. That would tell you where the Single Logout handlers are, and for which binding. I don't believe this information is typically populated in the logout request messages themselves.
Usually you get that info in the Issuer element of the request.
Hope it helps,
Luis
精彩评论