Fix SAML logout propagation with Redirect binding (#2449)

2021-01-27 22:10:12 +01:00 · 2021-01-27 22:10:12 +01:00 · c844cc25b0
commit c844cc25b0
parent 7166a96c88
1 changed files with 12 additions and 19 deletions
--- a/lemonldap-ng-portal/lib/Lemonldap/NG/Portal/Lib/SAML.pm
+++ b/lemonldap-ng-portal/lib/Lemonldap/NG/Portal/Lib/SAML.pm
@ -2595,27 +2595,20 @@ sub sendLogoutRequestToProvider {
        $self->logger->debug('Relay state set');
    }

-    # Build the request
-    unless ( $logout->request() ) {
-
-        $self->logger->debug("No logout request found, build it");
-
-        # Initiate the logout request
-        unless ( $self->initLogoutRequest( $logout, $providerID, $method ) ) {
-            $self->logger->error(
-                "Initiate logout request failed for $providerID");
-            return ( 0, $method, undef );
-        }
-
-        # Build request message
-        unless ( $self->buildLogoutRequestMsg($logout) ) {
-            $self->logger->error("Build logout request failed for $providerID");
-            return ( 0, $method, undef );
-        }
-
-        $self->logger->debug("Request built for $providerID");
+    # Initiate the logout request
+    unless ( $self->initLogoutRequest( $logout, $providerID, $method ) ) {
+        $self->logger->error("Initiate logout request failed for $providerID");
+        return ( 0, $method, undef );
    }

+    # Build request message
+    unless ( $self->buildLogoutRequestMsg($logout) ) {
+        $self->logger->error("Build logout request failed for $providerID");
+        return ( 0, $method, undef );
+    }
+
+    $self->logger->debug("Request built for $providerID");
+
    # Keep message ID in memory to prevent replay
    my $samlID = $logout->request()->ID;
    unless ( $self->storeReplayProtection($samlID) ) {