mirror of https://github.com/zulip/zulip.git
8fb0fe96c6
This is a useful improvement in general for making correct LogoutRequests to Idps and a necessary one to make SP-initiated logout fully work properly in the desktop application. During desktop auth flow, the user goes through the browser, where they log in through their IdP. This gives them a logged in browser session at the IdP. However, SAML SP-initiated logout is fully conducted within the desktop application. This means that proper information needs to be given to the the IdP in the LogoutRequest to let it associate the LogoutRequest with that logged in session that was established in the browser. SessionIndex is exactly the tool for that in the SAML spec. |
||
|---|---|---|
| .. | ||
| actions | ||
| data_import | ||
| integration_fixtures/nagios | ||
| lib | ||
| management | ||
| migrations | ||
| openapi | ||
| tests | ||
| tornado | ||
| views | ||
| webhooks | ||
| worker | ||
| __init__.py | ||
| apps.py | ||
| context_processors.py | ||
| decorator.py | ||
| filters.py | ||
| forms.py | ||
| logging_handlers.py | ||
| middleware.py | ||
| models.py | ||
| signals.py | ||