My app integrates Okta sign in route where user is taken to a common okta login page of the enterprise and once authenticated, user is brought back to the application’s homepage.
I have implemented a logout method which implements:
and then the user is redirected to login page.
Here, for internal users of the system it logs them in automatically. But for external users, we would like to not allow that, and would like to show the user the login page where the user enters the credentials again.
Currently, the only way an external user sees a login screen is if they quit the browser (not just close) and revisit the URL. If they click on LogOut, it logs them back in automatically.
I tried implementing clearing of sessions, cache clearing, etc, but none of that seems to be working.
Thank you for your help.
I am not sure what is missing that needs to be implemented as part of logout process to make that happen.