[RFE] SAML Single Logout not implemented #38494
Labels
area/authentication
JIRA
To be used in correspondence with the internal ticketing system.
kind/bug
Issues that are defects reported by users or that we know have reached a real release
kind/enhancement
Issues that improve or augment existing functionality
priority/0
team/collie
the team that is responsible for auth and rbac within rancher
Milestone
Rancher Server Setup
Information about the Cluster
Describe the bug
When integrating Rancher 2.6.6 with a SAML provider (we tried with Keycloak and Shibboleth), after a logout, if the user presses F5, he/she gets to login again without providing his/her credentials.
To Reproduce
Result
The user logs in again without providing credentials
Expected Result
Rancher should ask for your credentials
Additional context
Looking at the code (in pkg/auth/providers/saml), we are missing a single logout handler.
https://docs.oasis-open.org/security/saml/Post2.0/sstc-saml-tech-overview-2.0-cd-02.html#5.3.Single%20Logout%20Profile|outline
The text was updated successfully, but these errors were encountered: