Skip to content

Commit

Permalink
add comment
Browse files Browse the repository at this point in the history
  • Loading branch information
rudream committed Jun 21, 2024
1 parent e548196 commit 2434364
Showing 1 changed file with 3 additions and 0 deletions.
3 changes: 3 additions & 0 deletions lib/web/apiserver.go
Original file line number Diff line number Diff line change
Expand Up @@ -2193,6 +2193,9 @@ func (h *Handler) deleteWebSession(w http.ResponseWriter, r *http.Request, _ htt

// If the user has SAML SLO (single logout) configured, return a redirect link to the SLO URL.
if user != nil && len(user.GetSAMLIdentities()) > 0 && user.GetSAMLIdentities()[0].SAMLSingleLogoutURL != "" {
// The WebUI will redirect the user to this URL to initiate the SAML SLO on the IdP side. This is safe because this URL
// is hard-coded in the auth connector and can't be modified by the end user. Additionally, the user's Teleport session has already
// been invalidated by this point so there is nothing to hijack.
return map[string]interface{}{"samlSloUrl": user.GetSAMLIdentities()[0].SAMLSingleLogoutURL}, nil
}

Expand Down

0 comments on commit 2434364

Please sign in to comment.