Logout page requires authentication

We have ASP.NET Forms application that uses WS-FED (SAML) for login. Everything works fine except when logging out, the app would sometimes prompt to be authenticated to get to the logout.aspx page.

The logout.aspx simply calls this:

if (Request.IsAuthenticated)
HttpContext.Current.GetOwinContext().Authentication.SignOut(new AuthenticationProperties() { RedirectUri = Request.Url.AbsoluteUri }, WsFederationAuthenticationDefaults.AuthenticationType, CookieAuthenticationDefaults.AuthenticationType);

How do I prevent it from having to prompt for authentication just to get to the logout page?

This is a bit outside my skill set, but is the issue because the users’ session has expired within the app and the logout route requires the user to be auth’d? If so, what if you configure this route to not require auth instead?

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.