Reputation: 111
How to Use OpenID Connect 1.0 Logout Endpoint with Spring Authorization Server 1.1.0
Spring Authorization Server 1.1.0 with the OpenID Connect 1.0 Logout Endpoint
Is it possible in Spring Authorization Server version 1.1.0 to use the OpenID Connect 1.0 Logout Endpoint?
Is there anyone who knows where a good example can be found.
Thanks
Willy De Keyser
I always get the following error message:
{ "timestamp": "2023-06-02T21:16:24.850+00:00", "status": 400, "error": "Bad Request", "path": "/connect/logout" }
When I activate Logging Level trace I see the following error message:
Logout request failed: [invalid_request] OpenID Connect 1.0 Logout Request Parameter: id_token_hint
What is id_token_hint?
Upvotes: 2
Views: 2793
Answers (1)
Reputation: 21
You must send a POST request to http://your-domain/connect/logout with the following:
id_token_hint(OpenID Connect id_token)client_idpost_logout_redirect_uri(optional)
Where the client will be redirected after a successful logout.
Upvotes: 1
Related Questions
- Why isn’t the session deleted when logging out from the Spring Authorization Server?
- Spring Authorization Server Integration in Keycloak For Authorization Code Flow
- How to provide support for OpenID Connect 1.0 RP-Initiated Logout without mandating id_token_hint in Spring Authorization Server?
- Why state changes when requires authorization consent in Spring Authorization Server
- spring-security-oauth2-authorization-server + angular-auth-oidc-client
- Spring Authorization Server with the oidcClientRegistrationEndpoint
- Logout at Spring Authorization Server doesn’t terminate user session in Keycloak