Skip to content

UL Logout endpoint update #10493

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Open
wants to merge 8 commits into
base: master
Choose a base branch
from
Open
Changes from 1 commit
Commits
File filter

Filter by extension

Filter by extension

Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
Next Next commit
UL Logout endpoint update
  • Loading branch information
amanda-vanscoy_atko committed Jan 31, 2025
commit ffc7cb7f4a65b7d141941257a61f449ad7c97265
18 changes: 18 additions & 0 deletions articles/api/authentication/_logout.md
Original file line number Diff line number Diff line change
@@ -175,3 +175,21 @@ Logout behavior is determined by the configuration of the SAML2 Web App addon fo
### Learn More
- [Logout](/logout)
- [Log Users Out of SAML Identity Providers](https://auth0.com/docs/authenticate/login/logout/log-users-out-of-saml-idps)

## Universal Logout
<%= include('../../_includes/_http-method', {
"http_badge": "badge-primary",
"http_method": "GET",
"path": "oauth/global-token-revocation/connection/{ConnectionName}",
"link": "#logout"
}) %>
Use this endpoint with [Okta Workforce Identity Cloud's Universal Logout](https://developer.okta.com/docs/guides/oin-universal-logout-overview/) and OpenID Connect, or SAML enterprise connections to log users out of your applications. To learn more, read [Universal Logout](https://auth0.com/docs/authenticate/login/logout/universal-logout).

### Request Parameters
| Parameter | Description |
| : -- | : -- |
| `iss_sub` | Issuer URI from Okta Workforce Identity Cloud.|

### Remarks
- A request to this endpoint revokes sessions cookies and refresh tokens, but not access tokens.
- You must authenticate at the endpoint before revoking user sessions. Review [Endpoint Authentication](https://developer.okta.com/docs/guides/oin-universal-logout-overview/#endpoint-authentication).