Good timing...if you're building from source, could you test this small patch for me? The URL itself looks clean, but the actual flow overall has never been tested, so another bug will probably come up.
Fixed
Pinned fields
Click on the next to a field label to start pinning.
I wanted to test some of the logout functionality (this will become more and more important for us I suspect...).
In shibboleth2.xml I added this Notify element:
<Notify Channel="front" Location="https://dieng.switch.ch/" />
Being (SAML1 or SAML2) authenticated I then access https://dieng.switch.ch/Shibboleth.sso/Logout and get sent to
https://dieng.switch.ch/?action=logout&return=%3Fnotifying%3D1%26index%3D1.ch%2FShibboleth.sso%2FLogout
However, the GET parameters seem wrong: "?notifying=1&index=1.ch/Shibboleth.sso/Logout".
Cheers
Lukas