The logout operation is used to support single log-out functionality across providers. This operation is usually performed by a user client to remove a security context on an identity provider, but may subsequently be called on other providers as redirected by this operation.
The logout operation does not require any data.
The logout operation removes any security context from the current session.
If the provider is an identity provider, then the first provider identifier stored in the session by the produceArtifact operation is removed from storage and a redirect fault to the logout operation of the provider is returned. If no provider identifiers are left in the session, then the operation returns normally.
If the provider is not an identity provider, then a redirect fault to this provider's identity provider is returned.
The logout does not return any data.
The logout operation may return a redirect fault to redirect the requester to the logout operation of another provider.
The logout operation may return an operationFailed fault if the service was unable to otherwise fulfill the request.