Specify which session to logout from
Is there a way to specify which session to logout from when calling the /logout endpoint? OpenId connect seems to mention a
Context:
- This is a native desktop app which supports users to login and then do a lightweight logout to switch user. When switching user, I don't call the logout endpoint and keep the refresh token around until the user wants to switch back to this user.
- On the login screen, I list all the logged in users, clicking on one of them will use the saved refresh token to request a new access token. This works fine.
- Now I want to have a button on the user switch page which says "logout this user". I want this command to end the session on the server, so that the refresh token cannot be used anymore.
- I tried the
The application is a C# WPF app running in Windows. No SDK is available from Kinde, but I am using the Duende's OIDC client library to deal with all the openid connect voodoo.
id_token_hintContext:
- This is a native desktop app which supports users to login and then do a lightweight logout to switch user. When switching user, I don't call the logout endpoint and keep the refresh token around until the user wants to switch back to this user.
- On the login screen, I list all the logged in users, clicking on one of them will use the saved refresh token to request a new access token. This works fine.
- Now I want to have a button on the user switch page which says "logout this user". I want this command to end the session on the server, so that the refresh token cannot be used anymore.
- I tried the
/oauth2/revokeThe application is a C# WPF app running in Windows. No SDK is available from Kinde, but I am using the Duende's OIDC client library to deal with all the openid connect voodoo.
