search

dniel / traefik-forward-auth0

A backend for performing forward authentication with Auth0 using the Traefik reverse proxy.
GNU General Public License v3.0
86 stars 16 forks source link

Fix signout route #343

Open drupsys opened 2 years ago

drupsys commented 2 years ago

Hey, thanks for this briliant tool, please note I haven't written any applications in kotlin before and this is a very quick fix.

Current implementation of signout is not removing auth0 session browser cookies for the user, meaning, currently if the user returns to the application imidiately after signing out they will not be required to sign back in through auth0 single sign on, they will just get access to the app.

expected behaviour:

user signout -> user redirected to logout url -> user returns to application -> user is required to authenticate though auth0 signle sign on -> user is redirected to the application

actual behaviour:

user signout -> user redirected to logout url -> user returns to application -> user is assumed to be logged in

dniel commented 2 years ago

Thanx! I will test and verify that everything is working as excpected!