I’m having trouble getting Gatekeeper to logout properly and would welcome some advice.
I’m unable to logout with Gatekeeper directly because if I enable refresh tokens in its settings, then the Node js app that it sits in front of complains that the header size is too big. I understand that Node js has a hard coded header size of 80k.
My second option is to logout of Keycloak directly from the node js server. The problem there is that the client tries to login again. I understand that the access token cookie will remain and be valid until its expiration, but I’m still able to use the access token to get the refresh token and successfully refresh the token. This is something that I wouldn’t expect to be able to do given that I’ve supposedly logged out.
Both keycloak and gatekeeper are set to 7.0.1.
Does anyone have any suggestions on how to proceed?