Logout Redirect URI not working

amanthakur · May 13, 2022, 10:46pm

erik · May 13, 2022, 11:08pm

Hello,

In your Okta application under the general tab do you have an entry in Sign-out redirect URIs exactly how the browser is sending it?

amanthakur · May 13, 2022, 11:42pm

yes I do
https://localhost:5052/home/index

adrianopinaffo · May 14, 2022, 11:01pm

I think I have a similar (maybe the same) problem. My application is a SPA, I basically followed this tutorial ( Embedded Okta Sign-In Widget fundamentals).

I also have the Sign-out redirect URIs to the address of my page, http://localhost:3000.

I have my logout function written exactly the same as in the tutorial

function logout() {
      oktaSignIn.authClient.signOut();
      location.reload();
}

I noticed that the tokens and other information are stored in the localStorage… so I also tried to add after oktaSignIn.authClient.signOut(), localStorage.clear(). It indeed clears the localStorage, but magically it re-logs after it page refreshes. Does any one know what is going on?

adrianopinaffo · May 15, 2022, 2:04pm

I found a working solution, but I posted it here, since I don’t know if it is the best one.

erik · May 16, 2022, 5:34am

@ amanthakur Are you able to share a .har file of an attempted logout. Of not because you do not want to share Org details if you could open a support case and attach the .har file there.

@ adrianopinaffo You could do something like the below (assuming OIE),

        oktaSignIn.authClient.signOut({
          clearTokensBeforeRedirect: true,
          postLogoutRedirectUri: 'http://localhost:8080/myApp.html'
        });

amanthakur · May 16, 2022, 11:58am

return new SignOutResult(
new
{
OktaDefaults.MvcAuthenticationScheme,
CookieAuthenticationDefaults.AuthenticationScheme
});

This is what I have in my signout code.

amanthakur · May 16, 2022, 12:00pm

[HttpPost]
public IActionResult SignOut()
{
return new SignOutResult(
new
{
OktaDefaults.MvcAuthenticationScheme,
CookieAuthenticationDefaults.AuthenticationScheme
}
, new AuthenticationProperties { RedirectUri = “/home/index” });
}

amanthakur · May 16, 2022, 1:28pm

I am working with an .net core example posted on OKTA example github.
I have not issues with Sign in. Its the signout only.

erik · May 16, 2022, 9:14pm

This looks correct.
Can you explain what you see if you open dev console in your browser and watch the network tab during a logout.
Are you redirecting to Okta, logging out, then redirecting back to your application?

Can attach a .har file of your logout sequence?

amanthakur · May 16, 2022, 9:35pm

amanthakur · May 16, 2022, 9:37pm

amanthakur · May 16, 2022, 9:38pm

har file header, has a uri pointing to Acccount/SignOut.
I don’t have that in my code anywhere.

erik · May 16, 2022, 10:23pm

The /logout call to your Okta Org is returning a 400, please supply the entire URL of the call.

amanthakur · May 16, 2022, 10:47pm

EntireUri

I have the entire URI.

erik · May 17, 2022, 12:02am

That is the /signout for the application, I am looking for the full Okta /logout URL, This is what the /signout redirects to,
https://{domain}okta.com/oauth2/default/v1/logout?post_logout_redirect_uri=https%.....

If you can’t supply this the response to the /logout (where you receive a 400) should have an http-header named x-okta-request-id. If you can provide that value it might help us.

amanthakur · May 17, 2022, 1:03am

https://domain.oktapreview.com/oauth2/default/v1/logout?post_logout_redirect_uri=https://localhost:5052/signout/callback&id_token_hint=eyJraWQiOiJZMjR1YTN3SGRMX1huTmlyQ1pocHUzN2hvYmgtMl8zUDFIY3I4NkphaU5jIiwiYWxnIjoiUlMyNTYifQ.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.PySj0_oo8NzQWuMsVXHo4ZR6a7oB2KUn3bPYIzGzyIzRXDmXQJves3UK54wpL0HMiur6ox1mOjRs9uHsEjEBxDrMACXm4yUWlQIuzAW5hR-UfbGHSulrt4xVrSg0Y0S1z1F0G9SL2S2NEyKtwkVb9-HP4Izs-jGlowjkK_EQkKpKEQ5tj3hgmaH-nOUq_0ndjPcJ8ZgrHATq1KXoYlbgYDFukORKAGL2JC6Zx0v7X1WjWQd9DyJut-RzfWImMrN5ks3xhEIqtXXz_ScqLcL75_Y2skWz7Vm1WOuu0tFMm-o3MA70PUJcAhXyBuZO3GRU4d2BvTt0rCkjAic1J07RAQ&state=CfDJ8NHvRE61FPtEupFfwxPlewvz8rYt2mV3iT_xJ-w5Pktngwf6jTd4ZbGmd9dSuXpxFlmvdjNyiEaLWYBb_AmZRvENmutMNotGqNq9kAv5d6mM0EQsp0TIuVx13hmhh1SxDwrWZsgQhUcYwDljaxrPr6XTISXOMfwZAGqY251tN1bQnx4-sO-JHBS2Ww8MyoRhEA&x-client-SKU=ID_NETSTANDARD2_0&x-client-ver=6.7.1.0

Post		Replies	Views
Logout issue for Sign-out redirect URIs setting OAuth/OIDC	3	3934	February 12, 2024
Logout Redirect not working after setting URIs in portal OAuth/OIDC	3	2921	November 27, 2023
400 upon logout, redirect URI looks fine, no other clues Questions	4	2274	February 15, 2024
Logout using embedded sign-in widget fails OAuth/OIDC	4	4547	February 12, 2024
Sign-out Redirect URI seemingly ignored Questions	6	5787	June 10, 2021

Logout Redirect URI not working

Related topics