Log out

[h4wkmoon]

Problem description

Impossible to logout.

Steps to reproduce the problem

1. Activate SSO plugin.
2. Login with SSO
3. Logout ==> You are not logged not, but a new session is created.

Environment

• Graylog Version: Graylog 2.3.0+81f8228
• Plugin Version: 2.3.0
• Elasticsearch Version: Not relevant
• MongoDB Version: Not relevant
• Operating System: Not relevant
• Browser version: Not relevant

Could you add a url to be redirected to after the removal of the session by the logout process, plz ?
This way, after Graylog has delete the session, we can be redirected to the logout page of the SSO provider.

Being a total ignorant in Java, I can't help.

[kroepke]

While I agree with the request, it is essentially the same problem as with #35 (comment)

the tl;dr: the plugin itself is not consulted in the log out process and the frontend does not know about the authenticator which created the session, so it cannot redirect to the SSO provider.

In any case, this would require a server change, too.

[petererler]

If it would be possible to fix #35 in the way @ahus1 commented #35 (comment) then missing SSO headers would trigger a logout.
In addition if the logout-URL could be configured to be the SSO provider's logout-URL then single-logout would work, too.

[davama]

This feature would be great!