Access Rules - logout - redirect
Concerned version
Version: 1.9.16
Summary
We got redirected to the wrong app after calling "logout_sso" or "logout_app_sso" in access rules. Do the same when we specified an URL (external or app).
Tested with Chrome, Firefox, Edge
Logs
APACHE - APP
CLIENT_IP - USER_ID [17/May/2018:20:51:17 -0400] "GET /ACCESS_RULE_URL HTTP/1.1" 302 902 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko"
CLIENT_IP - - [17/May/2018:20:51:17 -0400] "GET / HTTP/1.1" 302 693 "https://SSO_PORTAL_URL/?url=BASE64_REDIRECT_URL==&logout=1" "Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko"
APACHE - PORTAL
CLIENT_IP - USER_ID [17/May/2018:20:51:17 -0400] "GET /?url=BASE64_REDIRECT_URL==&logout=1 HTTP/1.1" 200 2166 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko"
CLIENT_IP - - [17/May/2018:20:51:17 -0400] "GET /skins/common/js/info.min.js HTTP/1.1" 200 693 "https://SSO_PORTAL_URL/?url=BASE64_REDIRECT_URL==&logout=1" "Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko"
CLIENT_IP - - [17/May/2018:20:51:17 -0400] "GET /?url=BASE64_APP3= HTTP/1.1" 200 2800 "https://SSO_PORTAL_URL/?url=BASE64_REDIRECT_URL==&logout=1" "Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko"
CLIENT_IP - - [17/May/2018:20:51:17 -0400] "GET /?url=BASE64_APP4= HTTP/1.1" 200 2607 "https://SSO_PORTAL_URL/?url=BASE64_REDIRECT_URL==&logout=1" "Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko"
CLIENT_IP - - [17/May/2018:20:51:17 -0400] "GET /?url=BASE64_APP3= HTTP/1.1" 200 2607 "https://SSO_PORTAL_URL/?url=BASE64_APP3=" "Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko"
CLIENT_IP - - [17/May/2018:20:51:17 -0400] "GET /?url=BASE64_APP5= HTTP/1.1" 200 193 "https://SSO_PORTAL_URL/?url=BASE64_REDIRECT_URL==&logout=1" "Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko"
CLIENT_IP - - [17/May/2018:20:51:17 -0400] "GET /?url=BASE64_APP6= HTTP/1.1" 200 193 "https://SSO_PORTAL_URL/?url=BASE64_REDIRECT_URL==&logout=1" "Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko"
CLIENT_IP - - [17/May/2018:20:51:17 -0400] "GET /?url=BASE64_APP1= HTTP/1.1" 200 0 "https://SSO_PORTAL_URL/?url=BASE64_REDIRECT_URL==&logout=1" "Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko"
CLIENT_IP - - [17/May/2018:20:51:17 -0400] "GET /?url=BASE64_APP2 HTTP/1.1" 200 193 "https://SSO_PORTAL_URL/?url=BASE64_REDIRECT_URL==&logout=1" "Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko"
In this exemple, the browser ended on the PORTAL for the APP3. https://SSO_PORTAL_URL/?url=BASE64_APP3=
NOTE: The access rules was pointing to an external site and the "BASE64_REDIRECT_URL" value was fine...
Thanks