[ACCESS-1655] Add a possibilty to send to IDP the prompt=login/ForceAuthn=true when the user logout

Type: Suggestion
Resolution: Unresolved
Component/s: IdP SSO - User Login
Labels:
None

Support reference count:
6
Feedback Policy:

Our product teams collect and evaluate feedback from a number of different sources. To learn more about how we use customer feedback in the planning process, check out our new feature policy.

Issue Summary

When a user session is over due to a logout, sometimes the session is still alive on IDP, and the user is not prompted for a new authentication. Send the prompt=login or ForceAuthn=true will force a reauthentication no matter what.

It will be nice to have a parameter to control this behavior.

Steps to Reproduce

Login in the Bitbucket using an IDP
Logout of it
Try to login back in, the user is automatically authenticated

Expected Results

The user needs to provide a username and password manually again.

Actual Results

The user login to the system automatically

Workaround

Currently, there is no known workaround for this behavior. A workaround will be added here when available.

relates to

ACCESS-592 Logging out of Atlassian account does not log out of SAML provider

In Progress

is action for: ENT-555 Failed to load

mentioned in: Page Failed to load

Form Name

Assignee:: Unassigned

Reporter:: Diego Martins (Inactive)

Votes:: 10 Vote for this issue

Watchers:: 12 Start watching this issue

Created:: 20/Oct/2023 6:14 AM

Updated:: 20/Feb/2025 4:00 AM

Details

Description

Issue Summary

Steps to Reproduce

Expected Results

Actual Results

Workaround

Attachments

Issue Links

Forms

Activity

People

Dates