user1970869
Reputation: 23
Does FusionAuth provide a single signout?
Can't seem to find anything that makes FusionAuth send a signal to applications to terminate a user's session upon signout.
Upvotes: 1
Views: 576
Answers (1)
voidmain
Reputation: 1690
FusionAuth provides an API at /api/logout that might work. This API will revoke any refresh tokens that the user has. When refresh tokens are revoked, FusionAuth will send an event out to any configured Webhooks.
Here is the documentation on this API, Webhooks and the event that is fired:
- https://fusionauth.io/docs/v1/tech/apis/login#logout-a-user
- https://fusionauth.io/docs/v1/tech/events-webhooks/events#jwt-refresh-token-revoke
- https://fusionauth.io/docs/v1/tech/events-webhooks/writing-a-webhook
Here are the rough steps you can take to get this working:
- Create a logout endpoint in your application or in a new microservice (
https://example.com/global-logout) - This endpoint calls the
/api/logoutendpoint in FusionAuth - Each application that wants to be notified then writes a Webhook and handles the
jwt.refresh-token.revokeevent
You can see an example Webhook in the documentation link about. A Webhook that handles the jwt.refresh-token.revoke event might look like this in Node/JavaScript:
router.route('/fusionauth-webhook').post((req, res) => {
const request = req.body;
if (request.event.type === 'jwt.refresh-token.revoke') {
// Clean up all the user's stuff here
}
});
Upvotes: 1
Related Questions
- FusionAuth OTP Oauth Login
- Multi tenant OAuth with FusionAuth
- FusionAuth Authorization
- How to block multiple sessions on single account
- Is Fusionauth itself an identity provider?
- Mobile login to FusionAuth workflow: FusionAuth called on /api/login by "application" or "application backend"?
- Multi-tenant authorization wth FusionAuth
- Fusionauth user with two possibillity to login
- Is it possible to automatically migrate users with FusionAuth?
- Leveraging FusionAuth login / verify screens