Comments (19)
yes - this is not done yet.
from identityserver4.
OK thanks, and will it work with the jti property from the token?
from identityserver4.
?
from identityserver4.
Client Config on server:
IncludeJwtId= true,
I use response_type = "token".
Then I would like to logout like this:
// /connect/endsession?id_token_hint={jti property from token}&post_logout_redirect_uri=https://localhost:44347/unauthorized.html
var Logoff = function () {
var token = localStorageService.get("authorizationData");
var data = getDataFromToken(token);
var authorizationUrl = 'https://localhost:44345/connect/endsession';
var id_token_hint = data.jti;
var post_logout_redirect_uri = 'https://localhost:44347/unauthorized.html';
var state = Date.now() + "" + Math.random();
var url =
authorizationUrl + "?" +
"id_token_hint=" + id_token_hint + "&" +
"post_logout_redirect_uri=" + encodeURI(post_logout_redirect_uri) + "&" +
"state=" + encodeURI(state);
ResetAuthorizationData();
$window.location = url;
}
Possible?
Thanks Damien
from identityserver4.
it is not implemented yet - don't try to work around that ;)
Jti is not meant for logout.
from identityserver4.
We'll have an update to idsrv4 once rc2 is released.
from identityserver4.
When it is implemented, sometime after RC2 release, how will logout be supported when using response_type="token" then?
Greetings Damien
from identityserver4.
since token on its own would be OAuth 2.0 and not OpenID Connect - there is no logout.
from identityserver4.
Why do you support response_type="token" if you cannot logout then?
from identityserver4.
logout is part of the openid connect spec. OAuth 2.0 on its own is not an authentication protocol (hence no logout).
You can still logout of identityserver of course.
I can see that this is confusing ;)
from identityserver4.
Well you always said we should use OpenId connect. Have to re-implement now... It's not so easy to implement "id_token token" in javascript.
Thanks Damien
from identityserver4.
JS is not that bad -- you can look into the oidc-client/oidc-token-manager, or just use the idtoken validation endpoint:
https://identityserver.github.io/Documentation/docsv2/endpoints/identityTokenValidation.html
from identityserver4.
Also, here's a link to a relevant video: https://vimeo.com/131636653
from identityserver4.
Thanks, got it working, was missing the openid scope in the request. Thanks for the link, I look forward to watching it.
Greetings Damien
from identityserver4.
Hi there
Any idea about the ETA of RC2?
Looking forward to be able to use the Session logout feature.
from identityserver4.
No
https://github.com/aspnet/Home/wiki/Roadmap
from identityserver4.
Any work happening on this guys?
from identityserver4.
Looking forward to a solution on this one :-)
from identityserver4.
This thread has been automatically locked since there has not been any recent activity after it was closed. Please open a new issue for related bugs.
from identityserver4.
Related Issues (20)
- Identity server 4 - AuthorizeInteractionResponseGenerator not getting called for saml sso HOT 4
- Manually Extending Existing Refresh Token Expirations HOT 3
- Adding Custom values in Identity Server 4 Connect/token endpoint HOT 4
- FingerPrint Login HOT 4
- ASP.NET Core CORS policy cannot be mixed with IdentityServer4 CORS HOT 2
- How to Secure Blazor Server-Side with IS4 HOT 2
- IDX20803 Error when using Identity Server 4 on Linux Docker containers HOT 4
- Old SSL cert for https://identityserver.io/ HOT 3
- Custom token validation token HOT 3
- Identity Server 4 - Custom Identity Claims are not showing in Id Token, but scopes are visible in Access Token. HOT 3
- Demo Server (demo.identityserver.io) temporarily down or no longer available? HOT 2
- Displayed logged-in devices? HOT 3
- Use identityserver methods in api HOT 2
- Duplicate 'DbContext' attribute when perform "add-migration InitialIdentityServerConfigurationDbMigration ..." HOT 1
- Different domain silent renew issue HOT 3
- Could not load file or assembly Microsoft.IdentityModel.Tokens HOT 2
- EntityFramework.Storage project update AutoMapper to version 12 so that it works with .NET 7. HOT 15
- Reactjs - identity server 4 token Silent renewal error "Frame window timed out"
- Issues having upgraded to latest .NET HOT 2
- IdentityServer4 in Web Server or App Server?
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from identityserver4.