I have a use case where a user is logging in from App 1 and then clicks on a link to login to App 2 and once the user is logging out from App 2 and then tries to log back in from App 1, it is taking the user to Okta login page instead of logging in the user.
We are using “
https://yourdomain.okta.com/login/signout?fromURI=http://google.com” for logout on App 2.
User needs to be able to log back in as they do on the first attempt. We have even tried removing the fromURI part from the signout URI and it still behaves the same way.
Any help is much appreciated. Thank you so much in advance.
This "/login/signout endpoint logs you out of the Okta sessions that are responsible for maintaining the Okta dashboard. You can read more about it here:
Okta Sign out API - #10 by andrea.
You may need to use the Revoke endpoint (
OpenID Connect & OAuth 2.0 API | Okta Developer) and revoke the tokens for App1 or App2 based on where the user logs out and ensure the Okta sessions are Intact to avoid loguts…
And also, the right way to logout of Okta is to use the logout endpoint. Eric has summarized correctly that the fromURI parameter may not work as intended. You can read that