The CATS 3.0 constraint regarding Single Logout under Section 5.2.2 of the CATS 3.0 OIDC profile requires clarification to more clearly indicate that back-channel logout is the preferred approach over front-channel logout, and also allow for the possibility that some RPs may not support either (which could be permitted on an exception basis per the new proposed compliance language under Issue #34). The proposed updated wording follows:
"RP implementations SHOULD support OpenID back-channel logout [OIDC-BC] for the receipt of logout tokens. If an RP does not support back-channel logout, support for front-channel logout [OIDC-FC] is RECOMMENDED."
The CATS 3.0 constraint regarding Single Logout under Section 5.2.2 of the CATS 3.0 OIDC profile requires clarification to more clearly indicate that back-channel logout is the preferred approach over front-channel logout, and also allow for the possibility that some RPs may not support either (which could be permitted on an exception basis per the new proposed compliance language under Issue #34). The proposed updated wording follows:
"RP implementations SHOULD support OpenID back-channel logout [OIDC-BC] for the receipt of logout tokens. If an RP does not support back-channel logout, support for front-channel logout [OIDC-FC] is RECOMMENDED."