From 925f7f1258efba18c746d3f7310bdfce1db755be Mon Sep 17 00:00:00 2001 From: John Hsu Date: Sun, 21 Jul 2024 14:42:52 -0700 Subject: [PATCH] FIX logout message security error from idp " The request cannot be fulfilled because the message received does not meet the security requirements of the login service. " I think this means we need to sign our logout messages. I think this only happens because its trying to do a singlelogout. While I'd rather just disable singlelogout, there doesn't seem to be a simple toggle to do this. So I'm trying to get slo working instead. --- docker/simplesamlphp/sp/config/authsources.php | 3 +++ 1 file changed, 3 insertions(+) diff --git a/docker/simplesamlphp/sp/config/authsources.php b/docker/simplesamlphp/sp/config/authsources.php index 610f87d..e310e15 100644 --- a/docker/simplesamlphp/sp/config/authsources.php +++ b/docker/simplesamlphp/sp/config/authsources.php @@ -75,6 +75,9 @@ 'urn:oid:x.x.x.x', ], */ + + // IDP message security error on singlelogout without this + 'sign.logout' => true, ],