Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

missing end_session_endpoint from .well-known doc #1040

Closed
tech-sam opened this issue Sep 20, 2018 · 2 comments
Closed

missing end_session_endpoint from .well-known doc #1040

tech-sam opened this issue Sep 20, 2018 · 2 comments

Comments

@tech-sam
Copy link

I am using angular OIDC with hydra as my oauth2 server , angular oidc client accepting end_session_endpoint as a logout URL which will be acting as postLogoutRedirectUri so while loading well-known configuration end_session_endpoint is missing.
so post logout redirection is not working. Below is sample response for well-known document

{
	"issuer": "http://localhost:4444/",
	"authorization_endpoint": "http://localhost:4444/oauth2/auth",
	"registration_endpoint": "http://localhost:4444/clients",
	"token_endpoint": "http://localhost:4444/oauth2/token",
	"jwks_uri": "http://localhost:4444/.well-known/jwks.json",
	"subject_types_supported": ["public"],
	"response_types_supported": ["code",
	"code id_token",
	"id_token",
	"token id_token",
	"token",
	"token id_token code"],
	"claims_supported": ["sub"],
	"grant_types_supported": ["authorization_code",
	"implicit",
	"client_credentials",
	"refresh_token"],
	"response_modes_supported": ["query",
	"fragment"],
	"userinfo_endpoint": "http://localhost:4444/userinfo",
	"scopes_supported": ["offline",
	"openid"],
	"token_endpoint_auth_methods_supported": ["client_secret_post",
	"client_secret_basic",
	"private_key_jwt",
	"none"],
	"userinfo_signing_alg_values_supported": ["none",
	"RS256"],
	"id_token_signing_alg_values_supported": ["RS256"],
	"request_parameter_supported": true,
	"request_uri_parameter_supported": true,
	"require_request_uri_registration": true,
	"claims_parameter_supported": false
}
@tech-sam tech-sam changed the title missing end_session_endpoint from .well-known/openid-configuration API missing end_session_endpoint from .well-known doc Sep 20, 2018
@aeneasr
Copy link
Member

aeneasr commented Sep 21, 2018

Thanks, would you mind addressing this in a PR?

@aeneasr
Copy link
Member

aeneasr commented Sep 23, 2018

Ok, so I just checked with the spec and end_session_endpoint is a value from OpenID Connect Session Management 1.0 which is currently a draft and is thus not stable. We discussed implementing this spec a few times here but the general consensus was to wait until it's final, and also big question marks regarding some of the flows which use hidden iframes and other ugliness. As such, this feature will currently not be added as we don't want to implement something from a spec that's actually not supported.

Please raise an issue with the lib you're using for making this configurable or working towards a solution which enables you to consume this functionality without relying on the value. Thanks!

@aeneasr aeneasr closed this as completed Sep 23, 2018
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@aeneasr @tech-sam