Skip to content

Use configured logout matcher for SAML logout#19425

Open
Develop-KIM wants to merge 1 commit into
spring-projects:mainfrom
Develop-KIM:use-logout-matcher-for-saml2-logout
Open

Use configured logout matcher for SAML logout#19425
Develop-KIM wants to merge 1 commit into
spring-projects:mainfrom
Develop-KIM:use-logout-matcher-for-saml2-logout

Conversation

@Develop-KIM

Copy link
Copy Markdown

Fixes gh-10821

This updates SAML relying-party-initiated logout to reuse the logout request matcher configured through LogoutConfigurer, while still requiring the existing SAML authentication matcher.

Previously, SAML logout always created its own POST matcher from Saml2LogoutConfigurer#logoutUrl, so a custom matcher configured through logout().logoutRequestMatcher(...) was ignored for SAML logout.

Verification:

  • ./gradlew :spring-security-config:test --tests org.springframework.security.config.annotation.web.configurers.saml2.Saml2LogoutConfigurerTests.saml2LogoutWhenLogoutRequestMatcherConfiguredThenUses
  • ./gradlew :spring-security-config:test --tests org.springframework.security.config.annotation.web.configurers.saml2.Saml2LogoutConfigurerTests

@spring-projects-issues spring-projects-issues added the status: waiting-for-triage An issue we've not yet triaged label Jul 9, 2026
Signed-off-by: Develop-KIM <kimdonghwan913@gmail.com>
@Develop-KIM Develop-KIM force-pushed the use-logout-matcher-for-saml2-logout branch from 3bbfdf2 to 0010fca Compare July 9, 2026 12:34
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

status: waiting-for-triage An issue we've not yet triaged

Projects

None yet

Development

Successfully merging this pull request may close these issues.

Saml2LogoutConfigurer: Use RequestMatcher from LogoutConfigurer

2 participants