Uploaded image for project: 'Keycloak'
  1. Keycloak
  2. KEYCLOAK-3476

Salesforce doesn't support LogoutRequest

    XMLWordPrintable

Details

    • Bug
    • Status: Closed
    • Major
    • Resolution: Won't Do
    • None
    • None
    • None
    • None

    Description

      Salesforce.com doesn't seem to support SAML LogoutRequest

      https://success.salesforce.com/ideaView?id=08730000000DjseAAC

      The workaround is to use openid connect protocol to logout The question is, do we document this workaround? Or create a generic logout URL not protocol specific?

      Register a logout URL for keycloak at salesforce.com as

      http://rashmiidp.cloud.com:9990/auth/realms/saml-demo/protocol/openid-connect?redirect_uri=<encoded-url>

      Replace <encoded-url> as a URL encoded version of the URL you want keycloak to redirect the browser after logout.

      Next, you'll have to go into the Client tab in the Keycloak admin console and add that redirect uri to the list of allowed redirect uris.

      Attachments

        Activity

          People

            Unassigned Unassigned
            patriot1burke@gmail.com Bill Burke (Inactive)
            Votes:
            0 Vote for this issue
            Watchers:
            4 Start watching this issue

            Dates

              Created:
              Updated:
              Resolved: