Skip to content

Keycloak 25 SAML IdP has made Single Logout URL mandatory. #31781

New issue
New issue
Closed
#31907
Closed
Keycloak 25 SAML IdP has made Single Logout URL mandatory.#31781
#31907
Assignees
edewit
Labels
area/admin/uiarea/samlIndicates an issue on SAML areakind/bugCategorizes a PR related to a bugpriority/importantMust be worked on very soonrelease/25.0.3release/25.0.4release/26.0.0team/core-clientsteam/ui
@gknapowski

Description

@gknapowski
gknapowski
opened on Jul 30, 2024

Before reporting an issue

  • I have read and understood the above terms for submitting issues, and I understand that my issue may be closed without action if I do not follow them.

Area

saml

Describe the bug

The Single Logout Service is an optional field of SAML2. Versions of Keycloak <25.0.0 did not require this value to configure an IdP

KC versions >=25.0.0 have this marked as required.

image

In the past the field was not require (from 24.0.5):
image

Version

25.0.2

Regression

  • The issue is a regression

Expected behavior

a Single Logout URL should not be required.

Actual behavior

Without providing a value the looks like URL (https://something), the IdP cannot be created. While this works, it will create issues down the line.

How to Reproduce?

  1. Create a new SAML2 idP
  2. Slide Use entity descriptor to off
  3. Fill out required fields, leaving Single logout service URL empty
  4. Observe you cannot create the IdP

Anything else?

I noticed in conjunction with #31780

If this is by design, my apologies.

Metadata

Metadata

Assignees

Labels

area/admin/uiarea/samlIndicates an issue on SAML areakind/bugCategorizes a PR related to a bugpriority/importantMust be worked on very soonrelease/25.0.3release/25.0.4release/26.0.0team/core-clientsteam/ui

Type

No type

Projects

No projects

Milestone

No milestone

Relationships

None yet

Development

No branches or pull requests

Issue actions