You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
In the case of OIDC-aware clients, you cannot sign out of other sessions via the device manager in EW anymore. Instead, users will need to be guided towards the MAS UI to take this actions.
MSC3824 now describes this requirement and proposes the convention of ?action=session_end&device_id=<device_id>.
ACs
When the HS has a MAS deployment configured:
Clicking the sign-out button in the EW device manager for sessions other than the current redirects to MAS
There is an interstitial dialog that explains that the user will be redirected to perform the action on MAS
The redirection lands the user on a deep-link (query hash as per the MSC)
FYI - MAS is stripping the query params when doing it's redirect from /account to /account/ which might hamper testing. But if you right click and inspect the URL that EW has created it looks good 👍
In the case of OIDC-aware clients, you cannot sign out of other sessions via the device manager in EW anymore. Instead, users will need to be guided towards the MAS UI to take this actions.
MSC3824 now describes this requirement and proposes the convention of
?action=session_end&device_id=<device_id>
.ACs
The text was updated successfully, but these errors were encountered: