Uploaded image for project: 'OpenId Connect'
  1. OpenId Connect
  2. OIDC-236

Add the option to skip the ID Token from the logout request

    XMLWordPrintable

Details

    • Unknown

    Description

      While in the Open ID connect specs it's recommended to use the ID Token in the logout request, in the Microsoft v2.0 protocol, the ID Token hint is not needed for sign out. Adding it may actually cause logout errors to the users like:

      AADSTS90015 Requested query string is too long.

      I suggest adding a new configuration option that allows the user to skip the id_toke_hint from the logout request.

      Attachments

        Activity

          People

            Sorin Sorin Chiuchiu
            Sorin Sorin Chiuchiu
            Votes:
            0 Vote for this issue
            Watchers:
            0 Start watching this issue

            Dates

              Created:
              Updated:
              Resolved: