We have created an Sharepoint app which allows us to perform SSO towards ACS for Office 365 customers.
We are using the tenant-independent endpoint listed in http://msdn.microsoft.com/en-us/library/azure/dn195592.aspx for signing in and out (https://login.windows.net/common/wsfed?wa=<federation-action>&wtrealm=<application-identifier>).
Signing in works fine, but we are having some issues with signing out the user.
For instance, if we try to sign out the user when he is not signed into Azure/ACS, the user will see three possible outcomes:
- A blank page. (HTTP Status 200 and Content-Length of 0 bytes)
- An error message stating something went wrong, complaining about wtrealm and a HTTP Status Code of 400 - bad request.
- The user is redirected back to our redirect url.
Why isn't the user redirected to us every time?
Any tips are highly appreciated.
--
Hans Oluf Hagen