SAML 2.0 Logout issue | Community
Skip to main content
S
sudeepKonjeti
Level 2
April 17, 2025
Solved

SAML 2.0 Logout issue

  • April 17, 2025
  • 2 replies
  • 411 views

I am working on SAML2.0 Login functionality works fine but the Logout is not happening properly. I have given the IDP url for logout. and tried giving "/system/sling/logout.html" and "/system/sling/logout.html?resource=/aem" its redirecting back to home page of /aem/start.html. I dont see proper documentation specifying steps to configure logout.

 

can someone please mention step by step to configure logout properly for author instance of aem. where to configure /system/sling/logout.html and possibilities to acheive the logout. Any dispatcher configurations need to be added?

 

 

Best answer by konstantyn_diachenko

Hi @sudeepkonjeti ,

 

I haven't found official documentation, but I see several topics on the forum. Take a look into them:
https://experienceleaguecommunities.adobe.com/t5/adobe-experience-manager/saml-log-out-aem-as-a-cloud-service/td-p/576982

https://experienceleaguecommunities.adobe.com/t5/adobe-experience-manager/how-to-make-saml-authentication-handler-handle-logout/m-p/235146

 

Additionally, I checked com.adobe.granite.auth.saml.SamlAuthenticationHandler OSGI configuration and it has several configuration that are related to logout. I would assume you need to configure them:
- Handle Logout - Whether or not logout (dropCredentials) requests will be processed by this handler. (handleLogout)

- Logout URL - URL of the IDP where the SAML Logout Request should be sent to. If this property is empty the authentication handler won't handle logouts. (logoutUrl)

 

Best regards,

Kostiantyn Diachenko.

2 replies

konstantyn_diachenko
Community Advisor
konstantyn_diachenkoCommunity AdvisorAccepted solution
Community Advisor
April 17, 2025

Hi @sudeepkonjeti ,

 

I haven't found official documentation, but I see several topics on the forum. Take a look into them:
https://experienceleaguecommunities.adobe.com/t5/adobe-experience-manager/saml-log-out-aem-as-a-cloud-service/td-p/576982

https://experienceleaguecommunities.adobe.com/t5/adobe-experience-manager/how-to-make-saml-authentication-handler-handle-logout/m-p/235146

 

Additionally, I checked com.adobe.granite.auth.saml.SamlAuthenticationHandler OSGI configuration and it has several configuration that are related to logout. I would assume you need to configure them:
- Handle Logout - Whether or not logout (dropCredentials) requests will be processed by this handler. (handleLogout)

- Logout URL - URL of the IDP where the SAML Logout Request should be sent to. If this property is empty the authentication handler won't handle logouts. (logoutUrl)

 

Best regards,

Kostiantyn Diachenko.

Kostiantyn Diachenko, Community Advisor, Certified Senior AEM Developer, creator of free AEM VLT Tool, maintainer of AEM Tools plugin.
    kautuk_sahni
    Community Manager
    kautuk_sahniCommunity Manager
    Community Manager
    July 1, 2025

    @sudeepkonjeti Just checking in — were you able to resolve your issue?
    We’d love to hear how things worked out. If the suggestions above helped, marking a response as correct can guide others with similar questions. And if you found another solution, feel free to share it — your insights could really benefit the community. Thanks again for being part of the conversation!

    Kautuk Sahni
    Terms & ConditionsAccessibility statement

    Loading footer...