- changed status to open
backchannel_logout_session_supported does not work correctly
Issue #404
resolved
refers to com.nimbusds.openid.connect.sdk.op.OIDCProviderMetadata.java
Currently backchannel_logout_session_supported can only be true if frontchannel_logout_supported is true.
The reason are the following lines:
if (op.frontChannelLogoutSupported && jsonObject.get("backchannel_logout_session_supported") != null)
op.backChannelLogoutSessionSupported = JSONObjectUtils.getBoolean(jsonObject, "backchannel_logout_session_supported");
I think the following would be correct:
if (op.backChannelLogoutSupported && jsonObject.get("backchannel_logout_session_supported") != null)
op.backChannelLogoutSessionSupported = JSONObjectUtils.getBoolean(jsonObject, "backchannel_logout_session_supported");
Comments (4)
-
-
- changed status to resolved
Fixed here: 10637eff
-
Released in
version 10.2.1 (2022-12-05)
Happy coding!
-
reporter Great! Thanks
- Log in to comment
Thank for spotting this bug!