OIDC Logout Not Working

Agustus · October 12, 2023, 6:13am

Hi All,

oidc.endpoint.authorization=https://login.microsoftonline.com/{tenant id}/oauth2/v2.0/authorize

oidc.endpoint.token=https://login.microsoftonline.com/{tenant id}/oauth2/v2.0/token

oidc.endpoint.userinfo=https://graph.microsoft.com/oidc/userinfo

oidc.endpoint.logout=https://login.microsoftonline.com/{tenant id}/oauth2/v2.0/logout

oidc.scope=openid,profile,email,address,phone

oidc.clientid={client id}

oidc.secret={secret}

I have used the above configuration for oidc authentication, which works fine while a user is logging in, but couldn’t logout from the xwiki, as the Logout link is not pointing to the oidc logout endpoint instead it points to xwiki logout only and I was not able to Logout the user.

Any help is appreciatable, thanks in advance.

vignesh · December 1, 2023, 12:31pm

@Agustus , did you get any solution? we are also facing same issue.

Agustus · December 1, 2023, 12:38pm

No @vignesh , we tried but we couldn’t get any solution for it. It’s only logging out if we logout through any other application that uses logout

belfhi · January 10, 2024, 11:27am

Hi,
we got it working (using Keycloak as an OIDC Provider) by setting:

oidc.logoutMechanism=rpInitiated

instead of the default backchannel
Cheers,
Johannes

Agustus · January 10, 2024, 12:38pm

Hi @belfhi ,
I too checked that, there is a solution with keycloak, but we have microsoft’s authentication
With that the logout is not working, even setting

oidc.logoutMechanism=rpInitiated

Anyhow thanks for a solution

Thanks,
Bino Agustus M