OpenID-Connect-PHP icon indicating copy to clipboard operation
OpenID-Connect-PHP copied to clipboard

Published 20 hours ago verified publisher icon jumbojett

end_session_endpoint missing on sign out

Open fkramer-sage opened this issue 5 years ago • 1 comments

I use an Identity Provider that does not have the "end_session_endpoint" parameter in the .well-known/openid-configuration. This leads to an exception when calling signOut().

Is this expected behaviour? Is there a way around this?

fkramer-sage avatar Feb 06 '20 07:02 fkramer-sage

If your identity provider doesn’t include the parameter in its openid-configuration, it likely doesn’t support this feature. In my opinion, throwing an exception if this happens is the right way to handle this.

You may have following options:

  1. Catch the exception and handle the unsuccessful logout in your code.
  2. If your provider simply doesn’t publish its end_session_endpoint parameter, but does supports the spec, provide it by calling the method providerConfigParam. Alternatively, inform the maintainer identity providers about the bug.
  3. In case your identity provider doesn’t support RP-initiated Logout it makes no difference, whether yo call signOut or not.

@jumbojett In my opinion this issue should be closed.

JuliusPC avatar Dec 05 '20 13:12 JuliusPC