After trying to walk through every possible documentation, including OAuth 2.0, Okta, OIDC, I still can’t figure out what it takes to end a user session (log him out from Okta).
In my Flask app, the logout route looks like this:
@main_blueprint.route('/logout', methods=['POST', 'GET']) def logout(): oidc.logout() return redirect(url_for('main.index'))
In the docs, it says the endpoint /logout takes a few request parameters to log the user out.
It says that it takes “id_token_hint”. Is that what identifies the user? How can I retrieve the id_token_hint?
On a different post, someone suggested hitting the /token endpoint.
The request must include a few parameters which I understand and know, but some are not clear for me and even when trying to read online I could not understand what these are or how to retrieve them (grant_type, code, code_verifier).
What I should be cover or learn to understand how to implement this the right way?