環境:
のWindows Server 2008 R2
wso2is-5.3.0
wso2am-2.1.0WSO2 SAML SSO/SLO API Managerとアイデンティティ・サーバー用
のURL /ポート:
-hostname:9443/carbon-
-hostname:9443/publisher-
-hostname:9443/store
-hostname:9444/carbon(Identity Server)
問題:ここで指定したように私が使用して上記のすべてのコンポーネントのためのSAML SSOを構成した
は、IDプロバイダとしてのIS:https://docs.wso2.com/display/AM210/Configuring+Identity+Server+as+IDP+for+SSO
のシングルサインオン完璧な作品。私は上記のURLのいずれかをヒットし、私はISにリダイレクトされて認証され、再認証なしですべてのURLにログインしています。この問題はシングルログアウトで発生します。ストアまたはパブリッシャから最初にログアウトすると、セッションが無効になっているように見え、すべてのコンポーネント(つまり、ブラウザをリフレッシュすると再認証するように指示された場合)にログアウトします。しかし、私はISログに次のエラーが表示されます。
TID: [-1] [] [2017-09-20 10:13:41,047] INFO {org.wso2.carbon.identity.sso.saml.logout.LogoutRequestSender} - Sending single log out request again with retry count 1 after waiting for 60000 milli seconds to https://hostname:9443/acs
TID: [-1] [] [2017-09-20 10:13:41,062] INFO {org.wso2.carbon.identity.sso.saml.logout.LogoutRequestSender} - Sending single log out request again with retry count 1 after waiting for 60000 milli seconds to https://hostname:9444/acs
TID: [-1] [] [2017-09-20 10:14:41,060] INFO {org.wso2.carbon.identity.sso.saml.logout.LogoutRequestSender} - Sending single log out request again with retry count 2 after waiting for 60000 milli seconds to https://hostname:9443/acs
TID: [-1] [] [2017-09-20 10:14:41,076] INFO {org.wso2.carbon.identity.sso.saml.logout.LogoutRequestSender} - Sending single log out request again with retry count 2 after waiting for 60000 milli seconds to https://hostname:9444/acs
TID: [-1] [] [2017-09-20 10:15:41,073] INFO {org.wso2.carbon.identity.sso.saml.logout.LogoutRequestSender} - Sending single log out request again with retry count 3 after waiting for 60000 milli seconds to https://hostname:9443/acs
TID: [-1] [] [2017-09-20 10:15:41,089] INFO {org.wso2.carbon.identity.sso.saml.logout.LogoutRequestSender} - Sending single log out request again with retry count 3 after waiting for 60000 milli seconds to https://hostname:9444/acs
TID: [-1] [] [2017-09-20 10:16:41,086] INFO {org.wso2.carbon.identity.sso.saml.logout.LogoutRequestSender} - Sending single log out request again with retry count 4 after waiting for 60000 milli seconds to https://hostname:9443/acs
TID: [-1] [] [2017-09-20 10:16:41,118] INFO {org.wso2.carbon.identity.sso.saml.logout.LogoutRequestSender} - Sending single log out request again with retry count 4 after waiting for 60000 milli seconds to https://hostname:9444/acs
TID: [-1] [] [2017-09-20 10:17:41,100] INFO {org.wso2.carbon.identity.sso.saml.logout.LogoutRequestSender} - Sending single log out request again with retry count 5 after waiting for 60000 milli seconds to https://hostname:9443/acs
TID: [-1] [] [2017-09-20 10:17:41,100] ERROR {org.wso2.carbon.identity.sso.saml.logout.LogoutRequestSender} - Single logout failed after retrying 5 times with time interval 60000 in milli seconds.
TID: [-1] [] [2017-09-20 10:17:41,146] INFO {org.wso2.carbon.identity.sso.saml.logout.LogoutRequestSender} - Sending single log out request again with retry count 5 after waiting for 60000 milli seconds to https://hostname:9444/acs
TID: [-1] [] [2017-09-20 10:17:41,146] ERROR {org.wso2.carbon.identity.sso.saml.logout.LogoutRequestSender} - Single logout failed after retrying 5 times with time interval 60000 in milli seconds.
TID: [-1] [] [2017-09-20 10:18:41,128] INFO {org.wso2.carbon.identity.sso.saml.logout.LogoutRequestSender} - Sending single log out request again with retry count 1 after waiting for 60000 milli seconds to https://hostname:9443/publisher/jagg/jaggery_acs.jag
TID: [-1] [] [2017-09-20 10:19:41,188] INFO {org.wso2.carbon.identity.sso.saml.logout.LogoutRequestSender} - Sending single log out request again with retry count 2 after waiting for 60000 milli seconds to https://hostname:9443/publisher/jagg/jaggery_acs.jag
TID: [-1] [] [2017-09-20 10:20:41,202] INFO {org.wso2.carbon.identity.sso.saml.logout.LogoutRequestSender} - Sending single log out request again with retry count 3 after waiting for 60000 milli seconds to https://hostname:9443/publisher/jagg/jaggery_acs.jag
TID: [-1] [] [2017-09-20 10:21:41,215] INFO {org.wso2.carbon.identity.sso.saml.logout.LogoutRequestSender} - Sending single log out request again with retry count 4 after waiting for 60000 milli seconds to https://hostname:9443/publisher/jagg/jaggery_acs.jag
TID: [-1] [] [2017-09-20 10:22:41,228] INFO {org.wso2.carbon.identity.sso.saml.logout.LogoutRequestSender} - Sending single log out request again with retry count 5 after waiting for 60000 milli seconds to https://hostname:9443/publisher/jagg/jaggery_acs.jag
TID: [-1] [] [2017-09-20 10:22:41,228] ERROR {org.wso2.carbon.identity.sso.saml.logout.LogoutRequestSender} - Single logout failed after retrying 5 times with time interval 60000 in milli seconds.
私はSSOのログをオンにすると、私は再試行は、上記の発生する前に、各サービスプロバイダは、共有セッションから消去され、セッションがキャッシュから削除されていることを参照してください。それで、なぜ各SLO要求が各プロバイダに送信されているのですか?
TID: [-1234] [] [2017-09-21 08:48:32,655] DEBUG {org.wso2.carbon.identity.sso.saml.session.SSOSessionPersistenceManager} - Removed SLO supported service provider from session info data with name IS_CONSOLE
TID: [-1234] [] [2017-09-21 08:48:32,655] DEBUG {org.wso2.carbon.identity.sso.saml.session.SSOSessionPersistenceManager} - Removed SLO supported service provider from session info data with name API_STORE
TID: [-1234] [] [2017-09-21 08:48:32,655] DEBUG {org.wso2.carbon.identity.sso.saml.session.SSOSessionPersistenceManager} - Removed SLO supported service provider from session info data with name carbonServer
TID: [-1234] [] [2017-09-21 08:48:32,655] DEBUG {org.wso2.carbon.identity.sso.saml.session.SSOSessionPersistenceManager} - Removed SLO supported service provider from session info data with name API_PUBLISHER
TID: [-1234] [] [2017-09-21 08:48:32,655] DEBUG {org.wso2.carbon.identity.sso.saml.session.SSOSessionPersistenceManager} - Clearing the session data from cache with session index 55a88216-1b09-425e-b616-2f881bc6a717 and issuer API_PUBLISHER
TID: [-1234] [] [2017-09-21 08:48:32,686] DEBUG {org.wso2.carbon.identity.sso.saml.servlet.SAMLSSOProviderServlet} - SSO tokenId Cookie is removed