Uploaded image for project: 'PUBLIC - Liferay Portal Community Edition'
  1. PUBLIC - Liferay Portal Community Edition
  2. LPS-117957

Force SAML SP logout when user's IDP password is changed

    Details

      Description

      Explore options to forcing immediate logout of a Liferay SAML SP when the user changes their password on the SAML IDP which authenticated their session. Some thoughts...

      1. Liferay SP could support SOAP SLO binding
      2. Liferay SP should take the "notAfter" assertion attribute into account (but it still allows for some delay before SP logout)
      3. Liferay SP can frequently poll the IDP for IdP session validity. Likely a proprietary Liferay SP+IDP feature

        Attachments

          Activity

            People

            Assignee:
            support-lep@liferay.com SE Support
            Reporter:
            stian.sigvartsen Stian Sigvartsen
            Votes:
            0 Vote for this issue
            Watchers:
            0 Start watching this issue

              Dates

              Created:
              Updated:

                Packages

                Version Package