openid / connect / issues / #605 - Session Sec 2 - op_logout_url description — Bitbucket

Issue #605 resolved

John Bradley created an issue 2012-06-28

I think op_logout_url probably better described as the URL at the IdP that a client can redirect a user to for logging out at the OP.

Comments (8)

Nat Sakimura
- assigned issue to
  
  Breno de Medeiros
- 2012-09-10T07:07:59+00:00
Nat Sakimura
- changed component to Session
- 2012-10-18T14:41:12+00:00
Michael Jones
- changed title to Session Sec 2 - op_logout_url description
- 2012-10-22T20:12:41+00:00
Nat Sakimura
Actually, op_logout_url probably needs to be included in Messages. It is independent of Session management. Even without session management, client may want to signal the IdP to log the user out, and it needs normative language there. I am thinking of a shared computer use case.

Wrt shared computer in library use-case, the IdP session continuing even after the browser being closed is an issue. The next person may be impersonate the previous person. Do you have any ways to solve it?
- 2012-10-30T17:02:42+00:00
Michael Jones
- assigned issue to
  
  John Bradley
John will apply this clarification.
- 2012-12-03T23:07:47+00:00
John Bradley reporter
- assigned issue to
  
  Michael Jones
- 2013-01-07T23:35:24+00:00
Michael Jones
Mike will do with the other session management edits
- 2013-01-07T23:35:41+00:00
Michael Jones
- changed status to resolved
Fixed ~~#605~~ - op_logout_url description

→ <<cset 55b1d634da50>>
- 2013-01-10T10:00:07+00:00
Log in to comment

Assignee: Michael Jones

Type: bug

Priority: major

Status: resolved

Component: Session

Milestone: –

Version: –

Votes: 0

Watchers: 0

Jira: the preferred issue tracker for Bitbucket. Join the team!