Log out action does not work in a SSO enabled environment
The log out action does not work in a single sign-on (SSO) enabled environment. The action redirects the user to the application instead of logging off. However, this works in a non-SSO enabled environment.
Steps to Reproduce
Click Logout in a SSO enabled environment.
An issue in the custom application code or rules. Web-Session-Return HTML stream was overridden with the custom code.
Below is the <META> tag in the Pega 7.2.2 default Web-Session-Return HTML stream:
<META http-equiv="refresh" content="0;URL=<pega:reference name="$save(servURL)" />">
The Meta tag was incorrectly configured as below:
<META http-equiv="refresh" content="0;URL=https://web.uat1.abc.com" />
ResolutionPerform the following local-change:
Update the Web-Session-Return stream to refer directly to the SSO log-off page using a Meta tag.
<META http-equiv="refresh" content="0;URL="https://abclogin-dev.abc.net/siteminderagent/ssologout/Logout.html" />