[prev in list] [next in list] [prev in thread] [next in thread]
List: wsas-java-dev
Subject: Re: [Dev] Configuring Single-Sign-On with OIDC(Backchannel Logout) in IS samples
From: Sagara Gunathunga <sagara () wso2 ! com>
Date: 2019-03-26 3:53:45
Message-ID: CABwkbLr+vZ9vqQwbtZ-E7ecA3yHA_TCUYAV5+4A6XRUStM-tVQ () mail ! gmail ! com
[Download RAW message or body]
[Attachment #2 (multipart/alternative)]
On Tue, Mar 26, 2019 at 9:11 AM Isuranga Perera <isuranga@wso2.com> wrote:
> Hi All,
>
> IS samples[1] allow the users to try out SSO with OIDC(scenario 02). In
> this scenario, OIDC Session Management is used to invalidate
> sessions(logout). However, OIDC supports 3 logout mechanisms as follow.
>
> 1. Session Management
> 2. Back-channel Logout
> 3. Front-channel Logout
>
> If we're to provide scenarios for other two logout mechanisms we have to
> disable session check feature used in session management. But this cannot
> be done with the current implementation as it doesn't have any property to
> change the logout mechanism used in the OIDC SSO scenario at the
> application run time.
>
+1 to improve the code to check the session only in valid cases.
Thanks !
>
> Appreciate your insight on the priority of the $subject.
>
> [1] https://github.com/wso2/samples-is
>
> Best Regards
> --
> *Isuranga Perera* | Software Engineer | WSO2 Inc.
> +94 71 735 7034 | isuranga@wso2.com <isuruw@wso2.com>
>
>
--
Sagara Gunathunga | Director | WSO2 Inc.
(m) +94712149951 | (w) +94 11 7435800 | (e) sagara@wso2.com
[Attachment #5 (text/html)]
<div dir="ltr"><div dir="ltr"><br></div><br><div class="gmail_quote"><div dir="ltr" \
class="gmail_attr">On Tue, Mar 26, 2019 at 9:11 AM Isuranga Perera <<a \
href="mailto:isuranga@wso2.com">isuranga@wso2.com</a>> wrote:<br></div><blockquote \
class="gmail_quote" style="margin:0px 0px 0px 0.8ex;border-left:1px solid \
rgb(204,204,204);padding-left:1ex"><div dir="ltr"><div dir="ltr">Hi \
All,<div><br></div><div>IS samples[1] allow the users to try out SSO with \
OIDC(scenario 02). In this scenario, OIDC Session Management is used to invalidate \
sessions(logout). However, OIDC supports 3 logout mechanisms as \
follow.</div><div><ol><li>Session Management</li><li>Back-channel \
Logout</li><li>Front-channel Logout</li></ol></div><div>If we're to provide \
scenarios for other two logout mechanisms we have to disable session check feature \
used in session management. But this cannot be done with the current implementation \
as it doesn't have any property to change the logout mechanism used in the OIDC \
SSO scenario at the application run \
time.</div></div></div></blockquote><div><br></div><div>+1 to improve the code to \
check the session only in valid cases. </div><div><br></div><div>Thanks ! \
</div><blockquote class="gmail_quote" style="margin:0px 0px 0px 0.8ex;border-left:1px \
solid rgb(204,204,204);padding-left:1ex"><div dir="ltr"><div \
dir="ltr"><div><br></div><div>Appreciate your insight on the priority of the \
$subject.</div><div><br></div><div>[1] <a href="https://github.com/wso2/samples-is" \
target="_blank">https://github.com/wso2/samples-is</a><br \
clear="all"><div><br></div><div>Best Regards</div>-- <br><div dir="ltr" \
class="gmail-m_-3767107428448593288gmail_signature"><div dir="ltr"><div \
dir="ltr"><span style="border-collapse:collapse"><font color="#888888" face="verdana, \
sans-serif"><b>Isuranga Perera</b></font><font face="arial, sans-serif" \
color="#888888"> | </font><font color="#888888" face="verdana, sans-serif">Software \
Engineer</font><font face="arial, sans-serif" color="#888888"> | WSO2 \
Inc.</font><br><span style="color:rgb(136,136,136);font-family:arial,sans-serif"> \
+94 71 735</span><span style="color:rgb(136,136,136);font-family:arial,sans-serif"> \
7034</span><font face="arial, sans-serif" color="#888888"> </font><font face="arial, \
sans-serif" color="#888888">| <a href="mailto:isuruw@wso2.com" \
style="color:rgb(17,85,204)" \
target="_blank">isuranga@wso2.com</a></font></span></div><div><span \
style="border-collapse:collapse"><img \
src="http://c.content.wso2.com/signatures/wso2-signature-general.png"><br></span></div></div></div></div></div></div>
</blockquote></div><br clear="all"><div><br></div>-- <br><div dir="ltr" \
class="gmail_signature"><div dir="ltr"><div><div dir="ltr"><div dir="ltr"><div \
dir="ltr"><div dir="ltr"><div dir="ltr"><div dir="ltr"><span \
style="font-size:12.8px">Sagara Gunathunga</span><span style="font-size:12.8px"> | \
</span><span style="font-size:12.8px">Director</span><span style="font-size:12.8px"> \
| WSO2 Inc.</span></div><div dir="ltr"><span style="font-size:12.8px">(m) \
+9471</span><span style="font-size:12.8px">2149951</span><span \
style="font-size:12.8px"> | (w) +94 11 7435800 | (e) <a \
href="mailto:sagara@wso2.com" target="_blank">sagara@wso2.com</a></span></div><div \
dir="ltr"><span style="font-size:12.8px"><br></span></div><div><img \
src="https://c.content.wso2.com/signatures/wso2-mail-signature-general.png"><br><br></div></div></div></div></div></div></div></div></div></div>
_______________________________________________
Dev mailing list
Dev@wso2.org
http://wso2.org/cgi-bin/mailman/listinfo/dev
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic