Working on project where we use Windows Identity Foundation. While testing the sign out

Question

0

Asked: May 23, 20262026-05-23T20:26:59+00:00 2026-05-23T20:26:59+00:00

Working on project where we use Windows Identity Foundation. While testing the sign out

0

Working on project where we use Windows Identity Foundation.
While testing the sign out solution i found that the following call
http://rp/?wa=wsignoutcleanup1.0 does not delete the FedAuth cookie on the RP.
Which in turn make the user stay signed in at the RP.

To remedy the situation I added the following code to the Global.asax:

protected void Application_Start()
{
    FederatedAuthentication.WSFederationAuthenticationModule.SigningOut += new EventHandler<SigningOutEventArgs>(WSFederationAuthenticationModule_SigningOut);
}

void WSFederationAuthenticationModule_SigningOut(object sender, SigningOutEventArgs e)
{
    FederatedAuthentication.SessionAuthenticationModule.DeleteSessionTokenCookie();
}

But shouldn’t WIF take care of this automatically?
Or is this the way to do it?

Report

Leave an answer
Cancel reply

You must login to add an answer.

Need An Account,

1 Answer

Editorial Team · Answer 1 · 2026-05-23T20:27:00+00:00

Editorial Team

2026-05-23T20:27:00+00:00Added an answer on May 23, 2026 at 8:27 pm

Make sure all the url casings match, even the application name, website name casing in IIS should match the urls in configs. I had a hard time tracking this down. See here: wasignoutcleanup issue

0

Reply
Share
Share

- Report

Sign Up

Sign In

Forgot Password

The Archive Base Latest Questions

Working on project where we use Windows Identity Foundation. While testing the sign out

Leave an answerCancel reply

1 Answer

Leave an answer
Cancel reply