By: Dheivendian Ramasamy user 23 Aug 2019 at 8:05 a.m. CDT

2 Responses
Dheivendian Ramasamy gravatar
Hi, The option allowPostLogoutRedirectWithoutValidation is not available in our gluu admin section (Configuration -> JSON Configuration -> oxAuth Configuration). is there any option to add it? I want to set it as true. Please let me know. We are using Gluu 3.1.3 it was upgraded from gluu 2.4.3

By Aliaksandr Samuseu staff 23 Aug 2019 at 4:14 p.m. CDT

Aliaksandr Samuseu gravatar
Hi, Dheivendian. You can dump LDAP entry storing oxAuth's configuration and edit it manually. This particular configuration is stored in `oxAuthConfDynamic` attribute. It's actually a JSON object, which may, or may not be additionally base64-encoded (depending on version). Back up your instance before proceeding. First, store your LDAP root password in `/tmp/.dpw`. Then dump the entry: `# opt/opendj/bin/ldapsearch -h -p 1636 -s sub -T -Z -X -D 'cn=directory manager' -j /tmp/.dpw -b 'o=gluu' -z 10 '(&(objectclass=oxauthconfiguration))' oxAuthConfDynamic` If it's base64-encoded, you can append `| grep -v '^dn\:\ ' | cut -d' ' -f2 | base64 -d` to get it in cleartext. Then edit the JSON, addign a new property: ``` "allowPostLogoutRedirectWithoutValidation":true, ``` Then build LDIF file like this: ``` dn: ou=oxauth,ou=configuration,inum=@!XXXXXXXXXXXXX,ou=appliances,o=gluu changetype: modify replace: oxAuthConfDynamic oxAuthConfDynamic:: BASE64STRING ``` Use DN of the configuration entry you got with the previous command. If original value of `oxAuthConfDynamic` was base64-encoded, you'll need to encode your edited JSON as well first; note that for base64-encoded string you need to put double colon after attribute name: `oxAuthConfDynamic::` If it wasn't base64-encoded, you'll need to put it in cleartext - but first turn it into a one-liner kind of JSON object (remvoe all newlines from it). Use a single colon in such case: `oxAuthConfDynamic:` To apply the LDIF use this: `# /opt/opendj/bin/ldapmodify -h -p 1636 -Z -X -D 'cn=directory manager' -j /tmp/.dpw -f YOUR_LDIF.ldif`

By Dheivendian Ramasamy user 31 Aug 2019 at 4:36 a.m. CDT

Dheivendian Ramasamy gravatar
Hi, I solved my issue using "Front channel logout" method due to that I did not try the above procedure. Thanks.