Can Okta support SessionNotOnOrAfter for custom SAML applications?
SessionNotOnOrAfter [Optional] Specifies a time instant at which the session between the principal identified by the subject and the SAML authority issuing this statement MUST be considered ended. The time value is encoded in UTC, as described in Section 1.3.3. There is no required relationship between this attribute and a NotOnOrAfter condition attribute that may be present in the assertion.
Per http://docs.oasis-open.org/security/saml/v2.0/saml-core-2.0-os.pdf Page 27
This seems like something that we should be able to do for custom applications. Is this on a roadmap?