-
Bug
-
Resolution: Unresolved
-
Major
-
None
-
7.4.17.CR1
-
False
-
None
-
False
-
-
-
-
-
-
+
-
-
-
EAP application secured by SAML RH-SSO using TLS Edge route is deployed on the OCP cluster. When user logs-out the application on the jdk17 image the page redirects to the SSO login page instead of the application home page. This issue is JDK17 specific, the logout works as expected on the other JDKs.
Expected behavior: logout in the SSO secured app should behave in a same way on all the JDKs: from SSO it should redirect back to aplication home page.
URL after the logout on the JDK17 image
https://secure-sso-app-appsint-5kmh.apps.appsint-bzco.eapqe.psi.redhat.com/auth/realms/eap-realm/protocol/openid-connect/auth?response_type=code&client_id=app-profile-jsp&redirect_uri=https%3A%2F%2Fsecure-eap-appsint-5kmh.apps.appsint-bzco.eapqe.psi.redhat.com%2Fapp-profile-jsp%2Fprofile.jsp&state=2e18a12d-d73d-407b-bf8b-a9052210c970&login=true&scope=openid
URL after the logout on the JDK11 image
https://secure-eap-appsint-5kmh.apps.appsint-bzco.eapqe.psi.redhat.com/app-profile-jsp/index.jsp?logout=true
Tested on JDK17 image: registry-proxy.engineering.redhat.com/rh-osbs/jboss-eap-7-eap74-openjdk17-openshift-rhel8:7.4.17-1
OCP cluster version: 4.14
RH-SSO image: registry.redhat.io/rh-sso-7/sso76-openshift-rhel8:latest
RH-SSO version: 19.0.1