Hi,
I have configured my application to use OpenID as an authentication protocol. I am trying to logout from my application but when I use the URL and pass my id_token_hint as my idToken for the session it says invalid_token and then returns 400 error.
Can someone help me with this?
Also, my understanding is that the idToken is a JWT which comes back as part of the /token request.
which URL you are using to do logout? and yes: id_token is a JWT
The url I used is:
https://dev-395312.okta.com/oauth2/v1/logout?id_token_hint=eyJraWQiOiI0Y3lDZFlqNElkRm1oMW56ckJTcURuZE1rLWFMV2ZVOU9zN3YyQ3hpdTNFIiwiYWxnIjoiUlMyNTYifQ.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.GtXooJY-TCLEY_j2R5I_7jN0M2oOVQtLRxhstuxVVfY73qEV-8ISQYlrG4sxi5nPeNSAVnSDWRCMABK6JXtBnOIrb3iaisGku4SPBIVyfykVvqcNbwEV8-6CYGk3prLrE5UrikBsi1btnICreozMGLY81wD-Bir7Q9Jq4gOMHp-KrMJW8AhzWVeCZMmFUuaFGyvMDxHF_KRY_QoC5crZEOB_UlawAEauMWDt7N-_KKiAX5U5znSWNatqxu3lbxDlueTf77iDGLKTQ7NITSmQux_eoUGGMDTFa8gTcg6tZPq-T70jWK24ayTA7PXQOS1hVMV4SxmAczE4Tyoq9Sxg