Support Article
Log off does not work correctly
SA-56376
Summary
The log off does not work correctly after making changes in Code-Security.Logoff to handle No Single Logout (SLO) URL. The System Management Application (SMA) displays the requestor object as active even after logging off.
Error Messages
Not Applicable.
Steps to Reproduce
1. Log in using SSO Authentication AML
2. Log off without using SLO
3. Navigate to SMA. The requestor is still active and unauthenticated
Root Cause
Changes in Pega 7.3.1 were implemented so that when the AuthService contains no SLO URL definition for the Identity Provider (IdP), no exceptions occur when logging off. These changes hindered the log off process.
Resolution
Perform the following local-change:
- Copy Code-Security.Logoff to application ruleset
- Comment out Step 6 - Show-HTML for pySAMLLogoffWithoutSLO
Published July 23, 2018 - Updated October 8, 2020
Have a question? Get answers now.
Visit the Collaboration Center to ask questions, engage in discussions, share ideas, and help others.