While sign out a user via /saml/logout, there is an exception said:
RuntimeException encountered while processing SAML single-logout response: Error(s) encountered during processing of SLS response. Type(s): invalid_logout_response; reason given for last error: The Message of the Logout Response is not signed and the SP requires it in Drupal\samlauth\SamlService->sls()
In the log,
Sending SAML logout request:
<samlp:LogoutRequest
xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"
xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"
ID="ONELOGIN_285c73d4f02cd1fb246a8a2872c6f48782331822"
Version="2.0"
IssueInstant="2023-04-06T02:19:55Z"
Destination="http://localhost:8088/simplesaml/saml2/idp/SingleLogoutService.php">
<saml:Issuer>govcms9.local</saml:Issuer>
<saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_61cd75e7577b1eb91d4aa613efa20874f3f28b6f5e</saml:NameID>
<samlp:SessionIndex>_b58faa89cf7229abf86635aeadb61cf1cc171de88b</samlp:SessionIndex>
</samlp:LogoutRequest>
SLS received SAML response:
<samlp:LogoutResponse xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_7bd08bf78483e92c7b9699abdd73545542f3b77ab0" Version="2.0" IssueInstant="2023-04-06T02:19:55Z" Destination="http://govcms9.local:8080/saml/sls" InResponseTo="ONELOGIN_285c73d4f02cd1fb246a8a2872c6f48782331822"><saml:Issuer>http://localhost:8088/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/></samlp:Status></samlp:LogoutResponse>
Closed: works as designed
3.0
Code