fix saml slo for logout

2022-05-14 11:59:34 +00:00 · 2022-05-14 11:59:34 +00:00 · 4401dab8d6
commit 4401dab8d6
parent c4d75dca68
3 changed files with 14 additions and 1 deletions
--- a/app/Http/Controllers/Auth/LoginController.php
+++ b/app/Http/Controllers/Auth/LoginController.php
@ -449,11 +449,18 @@ class LoginController extends Controller
     */
    public function logout(Request $request)
    {
        // Logout is only allowed with a http POST but we need to allow GET for SAML SLO
        $settings = Setting::getSettings();
        $saml = $this->saml;
        $samlLogout = $request->session()->get('saml_logout');
        $sloRedirectUrl = null;
        $sloRequestUrl = null;
        // Only allow GET if we are doing SAML SLO otherwise abort with 405
        if ($request->isMethod('GET') && !$samlLogout) {
            abort(405);
        }
        if ($saml->isEnabled()) {
            $auth = $saml->getAuth();
            $sloRedirectUrl = $request->session()->get('saml_slo_redirect_url');
--- a/app/Http/Controllers/Auth/SamlController.php
+++ b/app/Http/Controllers/Auth/SamlController.php
@ -142,6 +142,6 @@ class SamlController extends Controller
            return view('errors.403');
        }
-        return redirect()->route('logout')->with('saml_slo_redirect_url', $sloUrl);
+        return redirect()->route('logout')->with(['saml_logout' => true,'saml_slo_redirect_url' => $sloUrl]);
    }
 }
--- a/routes/web.php
+++ b/routes/web.php
@ -434,6 +434,12 @@ Route::group(['middleware' => 'web'], function () {
            'uses' => 'DashboardController@getIndex' ]
    );
    // need to keep GET /logout for SAML SLO
    Route::get(
        'logout',
        [LoginController::class, 'logout']
    )->name('logout');
    Route::post(
        'logout',
        [LoginController::class, 'logout']