EndSessionEndpoint() previously called setOicdProvider() (which retries with backoff) and re-unmarshalled the discovery document on every logout. Read the end_session_endpoint once at provider init, store it on the provider, and make the accessor fail-fast (cached value, else the static logouturl) so /user/logout stays responsive even when the OP is unreachable. |
||
|---|---|---|
| .. | ||
| ldap | ||
| oauth2server | ||
| openid | ||
| auth.go | ||
| auth_test.go | ||