3.2.3 Customizing the Identity Server Logout Page

To customize the logout page that is shown when a user logs out of an Access Gateway protected resource, see Customizing Logout Requests. When you have both Liberty and SAML 2.0 sessions running on Identity Server and you log out of Access Gateway, the logoutsuccess_latest.jsp page is not executed with the customization you have made to the logout page.

For information about the workaround, see Logging Out of Sessions of Access Gateway and SAML Connectors when Branding Exists in the Customized Logout Page.

NOTE:After customizing a JSP file, you need to sanitize the JSP file to prevent XSS attacks. See, Section 13.7, Preventing Cross-site Scripting Attacks.