OpenID Connect RP Initiated Logout support

[azmeuk]

The OIDC RP Initiated Logout spec details how to logout an user from an identity provider when they logout from an application.

This would be very convenient to implement this in yii2-authclient. The spec is quite short and I think there would not be too much work implied on the client side.

What do you think?

[samdark]

Interesting. What existing providers are supported?

[azmeuk]

A quick search on the internet gives this:

• ❌ Auth0
• ❔ Authelia
• ❔ Authentic2
• ✅ Authentik
• ✅ Canaille
• ❔ CAS
• ✅ Connect2id
• ✅ Gluu
• ✅ Hydra
• ✅ Keycloak
• ❔LemonLDAP
• ✅ Okta

Note that there are other OIDC specs that deals with logging out, such as back channel logout and front channel logout that details how the identity provider can ask the relying parties to logout an user.

[samdark]

Alright. Enough providers doing it. Do you have time to implement it?

[azmeuk]

As always, I might tackle this someday but I won't make any promises.