Logout endpoint doesn't return state parameter

[heidenator]

when calling the logout endpoint coginto logs the user out however when it redirect back to the logout_uri it doesn't add the state variable when redirecting back. This cause the sign out to hang to on logout. for any application using open id connect. OIDC expects the state query string parameter to be there once the redirect happens to validate the response.

[AMZ-brandon]

When you want to log out with a redirect to a sign-out homepage (google.com in the example) instead of logging in again, use a logout_uri parameter. Example (includes the state parameter, which is not included in the redirect): https://auth.mydomain.com/logout?logout_uri=https%3A%2F%2Fgoogle.com&client_id=abc123EXAMPLE&state=abcdefg When you want to log out with a redirect to sign back in, use a redirect_uri parameter instead of a logout_uri. Example (state parameter is preserved when you redirect to the LOGIN endpoint. After you sign in, you're redirected to google.com): https://auth.mydomain.com/logout?client_id=abc123EXAMPLE&response_type=code&redirect_uri=https%3A%2F%2Fgoogle.com&state=abcdefg

Source: https://docs.aws.amazon.com/en_us/cognito/latest/developerguide/logout-endpoint.html#get-logout-request-parameters

[joshbean]

Closing this issue or pull request in advance of archiving this repo. For more information about the decision to archive this repo (and others in the 'awsdocs' org), see the announcement on the AWS News Blog.