- Issue created by @boyska
Oh, by the way, the exact same configuration works fine on a very old Drupal7 installation I still have around, on which I'm using saml_sp 3.4.
- πΊπΈUnited States jrglasgow Idaho
I don't have a use case for Single Logout, therefore I have no way to test if it works. If you would like to provide a merge request I can certainly merge it in.
- πΊπΈUnited States scott_earnest
Looking into this I can see there is a commit from back in 2017 with message "disabled SLO for the time being", that comments out the contents of the
saml_sp_user_logout()function (implementinghook_user_logout().So it seems that this functionality may have existed at one point, but perhaps got deprecated? The function hook name does not correspond to the submodule it is called from
saml_sp_drupal_login, so does not seem to be implemented because of that as well.Either way, it would appear that this ticket needs work.
Looking at the simplesamlphp_auth module, they also use the same hook, so seems to be the correct way to implement it. Perhaps there is something in that module that can help with this one:
https://git.drupalcode.org/project/simplesamlphp_auth/-/blob/8.x-3.x/sim...Perhaps this is something that can be configured on the IDP side? If this were the case the perhaps just a documentation update.
If the logout cannot be achieved in a reasonable amount of time, then perhaps the setting for "Single Log Out" in the admin UI should be hidden or deprecated.