CODEWITHSUNDEEP
asp.net-mvcazure-active-directory
gmasselli
gmasselli

Reputation: 121

Azure Active Directory Sign out Error

I've created a generic website from visual studio 2013 and successfully wired it up to an existing Azure Active Directory instance for authentication. I can login as any user in the Azure AD with the appropriate credentials. Unfortunately I can not sign out without receiving this error:

AADSTS50068: Signout failed. The initiating application is not a participant in the current session.

I've googled the error number, but apparently I'm the first person to ever encounter this....:) I'm pretty sure I'm not, but I'm now at a loss to explain why sign in works, but sign out does not.

Here is the sign out code, pretty much exactly as it was generated:

public ActionResult SignOut()
        {
            WsFederationConfiguration config = FederatedAuthentication.FederationConfiguration.WsFederationConfiguration;

            // Redirect to SignOutCallback after signing out.
            string callbackUrl = Url.Action("SignOutCallback", "Account", routeValues: null, protocol: Request.Url.Scheme);

            SignOutRequestMessage signoutMessage = new SignOutRequestMessage(new Uri(config.Issuer), callbackUrl);
            signoutMessage.SetParameter("wtrealm", IdentityConfig.Realm ?? config.Realm);
            string signoutMsg = signoutMessage.WriteQueryString();

            FederatedAuthentication.SessionAuthenticationModule.SignOut();      

            return new RedirectResult(signoutMsg);
        }

Upvotes: 2

Views: 5199

Answers (1)

gmasselli
gmasselli

Reputation: 121

After deleting the website in Azure and the associated live.com registration for Microsoft OAuth (https://account.live.com/developers/applications/) I recreated the example and logout worked as expected. I'm pretty confident I had incorrectly registered the application with an invalid "Redirect Url" (http vs https).

Upvotes: 1

Related Questions