OpenID Connect Single Logout¶
The following three single logout mechanisms are supported by OpenID Connect:
OpenID Connect Session Management is enabled by default for all OAuth/OpenID Connect service providers in WSO2 Identity Server. For more information on configuring an OAuth/OpenID Connect application, see Enable Authentication for an OIDC Web Application. To configure this logout mechanism in your application, see Manage User Sessions and Logout.
OpenID Connect Back-Channel Logout can be configured using one of the following methods:
- via OpenID Connect Dynamic Client Registration (DCR)
- manually via the WSO2 IS management console
To configure this logout mechanism in your application, see Configure OpenID Connect Back-Channel Logout.
OpenID Connect Front-Channel Logout is on the WSO2 Identity Server roadmap and will be available in a future release.