nuxt-oidc-auth icon indicating copy to clipboard operation
nuxt-oidc-auth copied to clipboard
verified publisher icon itpropro

Keycloak reports Invalid parameter: id_token_hint during logout

Open patrsc opened this issue 1 year ago • 2 comments

Sometimes (usually when the user is already logged in for a while) during logout Keycloak reports Invalid parameter: id_token_hint and does not redirect back to the application again, leaving the user at an error page where no meaningful link is shown.

Is this a bug? How could this be avoided?

patrsc avatar Oct 01 '24 17:10 patrsc

When the user session is expired and cannot be renewed, the user session will be locked out. The error you referenced is a hint that there is no client side id_token, but you are using a post logout redirect. Please check if you haven't accidentially overwritten the exposeIdToken with false and are still using the post logout redirect.

The next version will also change the error behavior to hide most of the errors from the user and instead clearing the session and redirecting to the login page.

itpropro avatar Oct 03 '24 20:10 itpropro

You can already try the new behavior in 1.0.0-beta.1.

itpropro avatar Oct 06 '24 00:10 itpropro

Can you confirm everything works as expected in 1.0.0-beta.3? I wasn't able to reproduce any of the keycloak issues anymore, so I will close this for now.

itpropro avatar Jan 05 '25 23:01 itpropro