Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

OpenID Connect: RP Initiated Logout #5057

Open
2 tasks done
rhclayto opened this issue Mar 12, 2023 · 5 comments
Open
2 tasks done

OpenID Connect: RP Initiated Logout #5057

rhclayto opened this issue Mar 12, 2023 · 5 comments
Labels
area/openid-connect OpenID Connect 1.0 / OAuth 2.0 related features/bugs priority/5/low Low priority items status/needs-design Requires thoughtful design type/feature Request for adding a new feature

Comments

@rhclayto
Copy link

rhclayto commented Mar 12, 2023
edited

Description

Add an end_session_endpoint key to the /.well-known/openid-configuration response, with a value of the Authelia logout page.

Use Case

I use a Nextcloud app that can coordinate the Nextcloud logout mechanism with the OpenID provider's logout, by using the value of end_session_endpoint. Currently, it seems Authelia doesn't provide this value. Would it be possible?

Details

No response

Documentation

The Nextcloud app in question: https://github.com/nextcloud/user_oidc

Pre-Submission Checklist

  • I agree to follow the Code of Conduct
  • I have checked for related issues and checked the documentation
@rhclayto rhclayto added priority/4/normal Normal priority items status/needs-design Requires thoughtful design type/feature Request for adding a new feature labels Mar 12, 2023
@james-d-elliott
Copy link
Member

james-d-elliott commented Mar 12, 2023
edited

It is an item on our list to support and it is possible. It's called RP Initiated Logout and it is a more advanced section of the extended specification (i.e. not part of the core specification).

See: https://openid.net/specs/openid-connect-rpinitiated-1_0.html

@james-d-elliott james-d-elliott changed the title Add end_session_endpoint to /.well-known/openid-configuration OpenID Connect: RP Initiated Logout Mar 12, 2023
@james-d-elliott james-d-elliott added area/openid-connect OpenID Connect 1.0 / OAuth 2.0 related features/bugs priority/5/low Low priority items and removed priority/4/normal Normal priority items labels Mar 12, 2023
@georglauterbach
Copy link
Contributor

Same here :D Would love to see this ❤️

@james-d-elliott
Copy link
Member

It would be good for anyone wishing for this feature to include apps which have support RP initiated logout. The feature is not a trivial one and lots of apps supporting it would be an incentive.

@georglauterbach
Copy link
Contributor

In my case, its

  1. Nextcloud
  2. GitLab
  3. I think Cloudflare Zero Trust supports it as well

@james-d-elliott james-d-elliott mentioned this issue Jul 29, 2023
Closed
2 tasks
@jyio jyio mentioned this issue Dec 4, 2023
Closed
@nick-oconnor
Copy link

Roundcube can be added to the list of apps as of roundcube/roundcubemail#9109

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
area/openid-connect OpenID Connect 1.0 / OAuth 2.0 related features/bugs priority/5/low Low priority items status/needs-design Requires thoughtful design type/feature Request for adding a new feature
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
4 participants
@nick-oconnor @james-d-elliott @rhclayto @georglauterbach