Show the logout redirect URL in the plugin form

Created on 14 July 2024, 5 months ago

Problem/Motivation

When the IdP supports a logout ("end_session") URL, OIDC will send a redirect URL as configured in admin/config/people/openid-connect/settings. However, if the IDP doesn't have that URL in its valid redirect URL list, it may refuse to acknowledge the end_session.

Steps to reproduce

Set the logout redirect to user/login, enable "Logout from identity provider" and attempt to log out from a supporting provider.

Proposed resolution

Add the logout redirect URL to the "Redirect URL" section of the plugin edit form, if it is needed.

User interface changes

Minimal, changes the Redirect URL from a single #markup item to an unordered list.

API changes

Changes the OpenIDConnectClientFormBase::getRedirectUrl() method from protected to public.

πŸ› Bug report
Status

Needs review

Version

3.0

Component

Code

Created by

πŸ‡ΊπŸ‡ΈUnited States John Franklin

Live updates comments and jobs are added and updated live.
Sign in to follow issues

Merge Requests

Comments & Activities

Production build 0.71.5 2024