We have OpenID Connect Web applications and we have implemented logout based on below Okta’s documentation. To logout you have to pass ID token value as id_token_hint parameter
It works fine if id_token is not expired (within an hour). After successful logout (removing Okta browser session) it redirects user to post_logout_redirect_uri.
However, after an hour of active user session if you try to logout then you get below error from Okta
Error code: invalid token
Description: The token has expired
With this current Okta’s RP-initiated logout implementation, how can any user who is using an application for more then 1 hour can successfully logout with Okta?