logto-io
bug: post sign-out uri is not working like docs say
Describe the bug
Docs section: https://docs.logto.io/end-user-flows/sign-out#clear-sign-in-session-at-logto
To explicitly sign out the user and clear the session at Logto, the client application need to redirect the user to the Logto's end session endpoint.
E.g. https://{your-logto-domain}/oidc/session/end
If a post-logout redirect URI is provided, the user will be redirected to the specified URI after the session is cleared. Otherwise, the user will be redirected to the default post-logout page hosted by Logto.
The OIDC app:
But hitting http://auth.localhost:8000/oidc/session/end doesn't redirect where it should, it redirects to http://auth.localhost:8000/oidc/session/end/success
Nowhere in docs or google there is no info about any required flags, url params (like ?redirect_uri=, which doesn't work also)
Expected behavior
After logout user is redirected to uri provided in settings
How to reproduce?
Create an OIDC app, enter the required settings, go to /oidc/session/end
Environment
Self-hosted (Docker image)
Screenshots
No response
Yes, similar to the sign-in request, you need to explicitly set the post_logout_redirect_uri in your /oidc/session/end request. If you're using one of our SDKs, the signOut method should support an optional postLogoutRedirectUri parameter.
Yes, similar to the sign-in request, you need to explicitly set the
post_logout_redirect_uriin your/oidc/session/endrequest. If you're using one of our SDKs, thesignOutmethod should support an optional postLogoutRedirectUri parameter.
to explicitly set the post_logout_redirect_uri where and how? ?post_logout_redirect_uri=http://localhost:8000?
Are you using any of the Logto SDKs in your application?
nope. auth is handled in oauth2 proxy
Then yes, you will need to append ?post_logout_redirect_uri=http://localhost:8000 to your end session request.
Then yes, you will need to append
?post_logout_redirect_uri=http://localhost:8000to your end session request.
But I tried and this doesn't work. That's why the issue
Hi, I have the same issue, has anyone resolve the issue?
the request url is http://
my application is wikijs both of the following methods are ineffective for WikiJS, the browser stop at /oidc/session/end/success page .
This issue is stale because it has been open for 30 days with no activity.
![github-actions[bot] avatar](https://avatars.githubusercontent.com/in/15368?v=4 "Published by a pub.dev verified publisher"){kind=small}
Hi, I have the same issue, has anyone resolve the issue? the request url is http://:3001/oidc/session/end?post_logout_redirect_uri= I use window.top.location.href = logtoLogoutUrl to redirect to logto logout end seesion, but the browser stop at :3001/oidc/session/end/success page, it did not go to the callback page.
What value did you send for post_logout_redirect_uri in the end-session request?
my application is wikijs both of the following methods are ineffective for WikiJS, the browser stop at /oidc/session/end/success page .
Could you verify whether the LogoutUrl setting in Wiki.js supports query parameters?
my application is wikijs both of the following methods are ineffective for WikiJS, the browser stop at /oidc/session/end/success page .
Could you verify whether the LogoutUrl setting in Wiki.js supports query parameters?
I am not entirely certain. I have just reviewed the source code at: https://github.com/requarks/wiki/blob/407aacfa19021f4b9b4cbaa24fc9524e359b876f/server/modules/authentication/oidc/authentication.js#L61
It appears that Wiki.js only supports a standard redirect. As a result, regardless of whether I include the post_logout_redirect_uri parameter in the Wiki.js logout URL, the process always remains on the /oidc/session/end/success page. This occurs even when Logto is configured to redirect to the Wiki.js homepage.
However, for certain specific providers—such as Keycloak or Auth0—Wiki.js does appear to forward additional parameters accordingly.