Closed guimard closed 1 month ago
@guimard logout URL should be with POST like this?
/backchannel_logout HTTP/1.1 Host: rp.example.org Content-Type: application/x-www-form-urlencoded logout_token=eyJhbGci...
@guimard logout URL should be with POST like this?
/backchannel_logout HTTP/1.1 Host: rp.example.org Content-Type: application/x-www-form-urlencoded logout_token=eyJhbGci...
Yes this is exactly what OP does
Hi @shepilov, could you give me the URL to set in LLNG conf ?
@guimard https://drive.stg.lin-saas.com/internal/services/console/v1/backchannel_logout I've just deployed it on the staging
Configuration updated, let's test. Note that it may fail until @rezk2ll study the new flow
As describe in TWP linagora/twake-workplace-private#99, we want to have logout. The only unbuggy way to do it is to use OIDC Back Channel Logout like Twake-Mail and Twake-Chat.
Please implement it _(with backchannel_logout_session_required, to avoid deleting all sessions)_.