EasySSO How to get the logs
Single Logout Support
EasySSO's SAML authenticator supports both IDP-initiated and SP-initiated Single Logout (SLO). Post and Redirect Bindings are both supported.
To enable Single Logout, you simply need to select the correct binding type "Logout Binding Type" and enter the correct URL provided for logout by your IDP.
In most cases, if you upload your IDP's metadata (via file or URL) on the "Certificates" tab, SLO binding type and URL will be configured automatically.
SLO Signature Validation
It is highly recommended to ensure SLO requests require signature validation. This is configurable via the "Verify Logout Request Signature" and "Verify Logout Response Signature" parameters on the SAML configuration page. More information is available here: EasySSO SAML Message Signing and Verification
Session Termination
EasySSO supports the "SessionNotOnOrAfter" attribute of AuthNRequests by default. This controls how long the end user's session will be valid for within the Atlassian application. If the end user is still using the application after this time they will be automatically logged out. This attribute can usually be configured via your IDP's session lifetime settings.