问题
I am integrating a SAML Service Provider with MS AAD and I have found an issue with Single Logout. My Service Provider only supports logout binding "HTTP-POST". And it seems that AAD only supports logout binding "HTTP-Redirect". I think so based on the SAML metadata I got from AAD - this is the only SingleLogoutService element I can see:
<SingleLogoutService
Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect"
Location="https://login.microsoftonline.com/xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx/saml2" />
Is it really the only supported SLO binding or is it possible to switch other bindings on somehow? I would especially like HTTP-POST.
If it's the only one, are there any plans to support other binding in the near future (let's say in 6 months)?
来源:https://stackoverflow.com/questions/50178430/azure-ad-saml-single-logout-unsupported-binding-http-post