ditkrg/AuthorizationServerDemos
4
0
Fork 0
mirror of https://github.com/ditkrg/AuthorizationServerDemos.git synced 2026-01-22 22:47:02 +00:00
Code Issues Packages Projects Releases Wiki Activity

global signout works now

Browse Source
This commit is contained in:
Muhammad Azeez 2021-01-19 11:30:53 +03:00
parent 47153ef058
commit e91379f1d8
5 changed files with 53 additions and 11 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

3
CSharp/AuthorizationServer/Config.cs
View File

@ -146,8 +146,7 @@ namespace OidcSamples.AuthorizationServer
{ {
"http://localhost:7000/signout-callback-oidc" "http://localhost:7000/signout-callback-oidc"
}, },
FrontChannelLogoutUri = "http://localhost:7000/signout-callback-oidc", FrontChannelLogoutUri = "http://localhost:7000/Authentication/FrontChannelLogout",
FrontChannelLogoutSessionRequired = true,
RequireConsent = false, RequireConsent = false,
} }
}; };

18
CSharp/AuthorizationServer/Quickstart/Account/AccountController.cs
View File

@ -241,14 +241,16 @@ namespace IdentityServerHost.Quickstart.UI
return SignOut(new AuthenticationProperties { RedirectUri = url }, vm.ExternalAuthenticationScheme); return SignOut(new AuthenticationProperties { RedirectUri = url }, vm.ExternalAuthenticationScheme);
} }
if (string.IsNullOrEmpty(vm.PostLogoutRedirectUri)) return View("LoggedOut", vm);
{
return View("LoggedOut", vm); //if (string.IsNullOrEmpty(vm.PostLogoutRedirectUri))
} //{
else
{ //}
return Redirect(vm.PostLogoutRedirectUri); //else
} //{
// return Redirect(vm.PostLogoutRedirectUri);
//}
} }
[HttpGet] [HttpGet]

18
CSharp/TaxApp/Controllers/AuthenticationController.cs
View File

@ -2,6 +2,7 @@
using Microsoft.AspNetCore.Authentication.Cookies; using Microsoft.AspNetCore.Authentication.Cookies;
using Microsoft.AspNetCore.Authentication.OpenIdConnect; using Microsoft.AspNetCore.Authentication.OpenIdConnect;
using Microsoft.AspNetCore.Mvc; using Microsoft.AspNetCore.Mvc;
using System;
using System.Threading.Tasks; using System.Threading.Tasks;
namespace OidcSamples.TaxApp.Controllers namespace OidcSamples.TaxApp.Controllers
@ -15,5 +16,22 @@ namespace OidcSamples.TaxApp.Controllers
await HttpContext.SignOutAsync(CookieAuthenticationDefaults.AuthenticationScheme); await HttpContext.SignOutAsync(CookieAuthenticationDefaults.AuthenticationScheme);
await HttpContext.SignOutAsync(OpenIdConnectDefaults.AuthenticationScheme); await HttpContext.SignOutAsync(OpenIdConnectDefaults.AuthenticationScheme);
} }
// https://andersonnjen.com/2019/03/22/identityserver4-global-logout/
// https://docs.identityserver.io/en/release/topics/signout.html#notifying-clients-that-the-user-has-signed-out
[HttpGet("FrontChannelLogout")]
public async Task<IActionResult> FrontChannelLogout(string sid)
{
if (User.Identity.IsAuthenticated)
{
var currentSid = User.FindFirst("sid")?.Value ?? "";
if (string.Equals(currentSid, sid, StringComparison.Ordinal))
{
await HttpContext.SignOutAsync(CookieAuthenticationDefaults.AuthenticationScheme);
}
}
return NoContent();
}
} }
} }

11
React/real-estate/src/services/userService.js
View File

@ -8,9 +8,20 @@ const config = {
response_type: "code", response_type: "code",
scope: "openid profile real-estate-api", scope: "openid profile real-estate-api",
post_logout_redirect_uri: "http://localhost:4000", post_logout_redirect_uri: "http://localhost:4000",
monitorSession: true,
// https://github.com/IdentityServer/IdentityServer4/blob/main/samples/Clients/src/JsOidc/wwwroot/app.js
// silent renew will get a new access_token via an iframe
// just prior to the old access_token expiring (60 seconds prior)
// silent_redirect_uri: window.location.origin + "/silent.html",
// automaticSilentRenew: true,
// will revoke (reference) access tokens at logout time
revokeAccessTokenOnSignout: true,
}; };
const userManager = new UserManager(config); const userManager = new UserManager(config);
userManager.events.addUserSignedOut(signoutRedirect);
export async function loadUserFromStorage(store) { export async function loadUserFromStorage(store) {
try { try {

14
React/traffic-police/src/services/userService.js
View File

@ -7,11 +7,23 @@ const config = {
redirect_uri: "http://localhost:3000/signin-oidc", redirect_uri: "http://localhost:3000/signin-oidc",
response_type: "code", response_type: "code",
scope: "openid profile traffic-police-api", scope: "openid profile traffic-police-api",
post_logout_redirect_uri: "http://localhost:3000" monitorSession: true,
post_logout_redirect_uri: "http://localhost:3000",
// https://github.com/IdentityServer/IdentityServer4/blob/main/samples/Clients/src/JsOidc/wwwroot/app.js
// silent renew will get a new access_token via an iframe
// just prior to the old access_token expiring (60 seconds prior)
// silent_redirect_uri: window.location.origin + "/silent.html",
// automaticSilentRenew: true,
// will revoke (reference) access tokens at logout time
revokeAccessTokenOnSignout: true,
}; };
const userManager = new UserManager(config); const userManager = new UserManager(config);
userManager.events.addUserSignedOut(signoutRedirect);
export async function loadUserFromStorage(store) { export async function loadUserFromStorage(store) {
try { try {
let user = await userManager.getUser(); let user = await userManager.getUser();