问题描述
我已经成功地使用了 Brock Allen 的
查看元数据端点表明有一个撤销端点.
我已经像这样配置了 oidc-client-js 库:
var 设置 = {权限:'https://susqsofttest.auth0.com/.well-known/openid-configuration',client_id: '我的客户 ID',redirect_uri: 'http://localhost:8080/signin-oidc',post_logout_redirect_uri: 'http://localhost:8080/logout',response_type: 'id_token 令牌',范围:'openid 个人资料电子邮件',revokeAccessTokenOnSignout: 真,自动静音更新:真,filterProtocolClaims: 真,加载用户信息:真};var mgr = 新用户管理器(设置);对我缺少的东西有什么想法吗?
signout redirect 明确查看 idp 中的 Json 属性end_session_endpoint" configuration,我在您的 idp 配置中没有看到该端点,我想,这不是您可以使用 oidc-client.js 包覆盖的内容.
查看他们如何从元数据中检索端点 URL.https://github.com/IdentityModel/oidc-client-js/blob/dev/src/OidcClient.js#L124
I've successfully used the oidc-client-js library by Brock Allen to authenticate my SPA app with Auth0 acting as my Identity Provider. However, when I try to use the library to sign the user out mgr.signoutRedirect({state: "my test"}), I receive an error: no end session endpoint.
A look at the metadata endpoint shows that there is a revocation endpoint.
I've configured the oidc-client-js library like so:
var settings = {
authority: 'https://susqsofttest.auth0.com/.well-known/openid-configuration',
client_id: 'my client id',
redirect_uri: 'http://localhost:8080/signin-oidc',
post_logout_redirect_uri: 'http://localhost:8080/logout',
response_type: 'id_token token',
scope: 'openid profile email',
revokeAccessTokenOnSignout: true,
automaticSilentRenew: true,
filterProtocolClaims: true,
loadUserInfo: true
};
var mgr = new UserManager(settings);
Any ideas of what I'm missing?
signout redirect explicitly looking at the Json property "end_session_endpoint" in your idp configuration, I do not see that endpoint in your idp configuration, and I guess, this is not something that you can override with oidc-client.js package.
Check this out on how they are retrieving the endpoint url from metadata.https://github.com/IdentityModel/oidc-client-js/blob/dev/src/OidcClient.js#L124
这篇关于针对 Auth0 的 oidc-client-js 的 signoutRedirect 不返回结束会话端点的文章就介绍到这了,希望我们推荐的答案对大家有所帮助,也希望大家多多支持!