Open ymarcon opened 5 months ago
Currently agate signs out downstream only (signout from the delegated ID providers), but does not sign out upstream (the clients).
A single signout feature could be implemented based on this openid specifications: https://openid.net/specs/openid-connect-backchannel-1_0.html
https://stackoverflow.com/questions/44712576/single-sign-out-principle-in-keycloak
Currently agate signs out downstream only (signout from the delegated ID providers), but does not sign out upstream (the clients).
A single signout feature could be implemented based on this openid specifications: https://openid.net/specs/openid-connect-backchannel-1_0.html