SAML IdP-initiated Single Logout
This is not an issue but more like a help ticket.
I am writing my own SAML sp and using LLNG as IdP to test. My own sp just supports IdP-initiated logout and I am looking for something similar with SimpleSAMLphp IdP-initiated logout at the page bottom.
I can tell after reading the official documentation and issues that LLNG should support SAML IdP-initiated logout but the information is in fragments. Can anyone give ideas on how to trigger the IdP-initiated logout? Many thanks!
For now, the IdP <SingleLogoutService>
metadata looks like this, and I am using HTTP-Redirect for single logout (the single login has already worked out in my local environment):
<SingleLogoutService
Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP"
Location="http://idp.example.com:8080/saml/singleLogoutSOAP" />
<SingleLogoutService
Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect"
Location="http://idp.example.com:8080/saml/singleLogout"
ResponseLocation="http://idp.example.com:8080/saml/singleLogoutReturn"
/>
<SingleLogoutService
Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST"
Location="http://idp.example.com:8080/saml/singleLogout"
ResponseLocation="http://idp.example.com:8080/saml/singleLogoutReturn"
/>