Discover the magic of the internet at Imgur, a community powered entertainment destination. Lift your spirits with funny jokes, trending memes, entertaining gifs, inspiring stories, viral videos, and so much more from users.
I actually recently added the Microsoft logout page to µblocks domain filter at work, since it would every now and then trigger a logout the very first page load after I’d log in to the email there.
This has also somehow caused a bunch of other AD-connected systems to suddenly behave a lot better when it comes to session termination.
Edit: Since people were asking for it, this is what you need to add to the “My filters” tab in your UBO config;
WTAF. I was sceptical, but I’ve been using this all week and haven’t once had the issue in the OP. Whereas previously I had to log in 2-3 times back to back every morning.
I think the login-redirect system is just broken for ADFS, it feels like it adds all the SSO-logout URLs for all systems you’re logged into to the redirect queue when it times your session out.
Which means you’ll have to log in enough times to exhaust that queue before it finally reaches the actual system you’re trying to log into.
I actually recently added the Microsoft logout page to µblocks domain filter at work, since it would every now and then trigger a logout the very first page load after I’d log in to the email there.
This has also somehow caused a bunch of other AD-connected systems to suddenly behave a lot better when it comes to session termination.
Edit: Since people were asking for it, this is what you need to add to the “My filters” tab in your UBO config;
||login.microsoftonline.com/common/oauth2/v2.0/logout^$documentThis will prevent any requests from redirecting you to log out, timeouts etc will still invalidate your session.
WTAF. I was sceptical, but I’ve been using this all week and haven’t once had the issue in the OP. Whereas previously I had to log in 2-3 times back to back every morning.
Any idea why this works?
I think the login-redirect system is just broken for ADFS, it feels like it adds all the SSO-logout URLs for all systems you’re logged into to the redirect queue when it times your session out.
Which means you’ll have to log in enough times to exhaust that queue before it finally reaches the actual system you’re trying to log into.
But that’s just an assumption.
So, how do you do that exactly?
Oh wow. So you just added the /logout endpoint itself or something else?
LPT
Oh, do share.
Added an edit with the filter line