New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Error message on logout from client side #1033

Closed
sahiliamsso opened this Issue Jul 7, 2018 · 7 comments

Comments

Projects
None yet
5 participants
@sahiliamsso
Contributor

sahiliamsso commented Jul 7, 2018

Based on this ticket, User gets below error message on logout.

Error Message:
{“error”:”invalid_grant”,”error_description”:”The provided access token is invalid, or was issued to another client.”}

This is reproducible in gluu idp 2.4.4 as well, and seems to happen anytime there is a cookie in the browser i.e. on incognito browser, User can login/logout fine for the first time. Any subsequent logout attempt throws this error

Flow -

  1. Client calls OP and gets “code” back -> successful login
  2. Client logs out and call end_session with id_token_hint
  3. At this point logout is successful and user login to get the “code” back -> successful login
  4. User clicks logout and call end_session with the same id_token_hint from previous session which is already expired.

Expected behavior - Client has to fetch NEW id_token and then present that new id_token as id_token_hint to /end_session.

@sahiliamsso sahiliamsso added this to the 3.1.4 milestone Jul 7, 2018

@sahiliamsso sahiliamsso added the bug label Jul 7, 2018

@yuriyz yuriyz assigned shekhar16 and unassigned yuriyz Jul 7, 2018

@sahiliamsso

This comment has been minimized.

Contributor

sahiliamsso commented Jul 24, 2018

@shekhar16 - any update on this?

@mzico

This comment has been minimized.

Contributor

mzico commented Jul 25, 2018

@qbert2k : Any thought on this?

@qbert2k

This comment has been minimized.

Contributor

qbert2k commented Jul 27, 2018

Please check whether it is the same as issue oxAuth-371:
GluuFederation/oxAuth#371

@sahiliamsso

This comment has been minimized.

Contributor

sahiliamsso commented Jul 31, 2018

It appears to be the similar issue. @mzico thoughts?

@mzico

This comment has been minimized.

Contributor

mzico commented Aug 1, 2018

@sahiliamsso : It is. I think it's expected behavior... check out @qbert2k 's last comment there in GluuFederation/oxAuth#371.

@shekhar16

This comment has been minimized.

Contributor

shekhar16 commented Aug 15, 2018

@mzico can we close this issue?

@mzico

This comment has been minimized.

Contributor

mzico commented Aug 31, 2018

We can close it.

@mzico mzico closed this Aug 31, 2018

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment