Bug 1330599

Summary: [GSS](6.4.z) SAML2LogoutHandler should create logout request with nameid format
Product: [JBoss] JBoss Enterprise Application Platform 6 Reporter: dhorton
Component: PicketLinkAssignee: Dmitrii Tikhomirov <dtikhomi>
Status: CLOSED CURRENTRELEASE QA Contact: Josef Cacek <jcacek>
Severity: unspecified Docs Contact:
Priority: high    
Version: 6.4.7CC: anmiller, bdawidow, bmaxwell, dtikhomi, egonzale, jbilek, jtruhlar, msochure, okotek, psilva, pskopek, rnetuka
Target Milestone: CR1   
Target Release: EAP 6.4.9   
Hardware: Unspecified   
OS: Unspecified   
Whiteboard:
Fixed In Version: Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of:
: 1330602 (view as bug list) Environment:
Last Closed: 2017-01-17 12:53:44 UTC Type: Bug
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:
Bug Depends On:    
Bug Blocks: 1324262, 1330602, 1333180    

Description dhorton 2016-04-26 14:38:31 UTC 
Description of problem:
The logout request created by the SAML2LogoutHandler needs to have the format set on the NameID. Even though the spec says it is an optional attribute, 3rd party projects such as Shibboleth mandate it.
Comment 1 dhorton 2016-04-26 15:14:43 UTC 
Fixed in branch 2.5.4.SP7-redhat-1_BZ-1330602.  This needs to be cherry-picked into the next product release branch.
Comment 2 dhorton 2016-04-26 15:18:08 UTC 
The NameID format can be adjusted by using teh "NAMEID_FORMAT" configuration option on the SAML2LogOutHandler in the picketlink.xml file:

<Handler class="org.picketlink.identity.federation.web.handlers.saml2.SAML2LogOutHandler">
  <Option Key="NAMEID_FORMAT" Value="urn:oasis:names:tc:SAML:2.0:nameid-format:email"/>                                                              
</Handler>
Comment 7 Jiří Bílek 2016-06-24 10:56:04 UTC 
Verified with EAP 6.4.9.CP.CR2
Comment 8 Petr Penicka 2017-01-17 12:53:44 UTC 
Retroactively bulk-closing issues from released EAP 6.4 cummulative patches.