timnolte
commented
4 months ago FYI, so I think what you are looking for is Back-Channel Logout. I'm going to close this as a duplicate of that issue.
https://github.com/oidc-wp/openid-connect-generic/issues/205
Is your feature request related to a problem? Please describe. Currently the plugin only supports RP-initiated logout, it would be wishful to to close the loop and also enable/implement OP-logout.
Describe the solution you'd like This is a new feature allowing the relation to both honor RP-, as well as OP-logout in a similar way as Single Logout works in SAML. When a users's session at a/the IDP exipires (or a logout is performed) it should also kill/perform a logout in Wordpress.
Describe alternatives you've considered At current - known to me- there are no alternatives. When a user logs out at the IDP, the plugin will not re-check if a/the session is no longer valid Access to a/the wordpress -instance is still facilitated on a local authentication- session/cookie.
Additional context I would like to contribute to this enhancement out of personal interest, but am in need of some guidance to build this feature. Do take in account that i have limited time available to spend in this type of enhancement.