Logout from all application in Google Identity Provider

I have set up a Google Identity Provider and created two applications, each with its own client. When a user accesses Application 1, they are redirected to Gmail for login. If they then access Application 2, they are automatically redirected to the home page since they are already logged in. However, when a user logs out from one application, I need them to be logged out from the other application as well. Currently, this is not happening. Can anyone help?

You have the Single Logout feature [1] to log out from other apps. However, in the Social Login scenario, if the Social Provider Cookie is available, you will have Single Sign-On (SSO) when you try to log in again.

[1] Final: OpenID Connect Back-Channel Logout 1.0 incorporating errata set 1

Do you mean in Social Media login, it will not log out from other applications? Also, where can I check the Social Provider cookie?

Whatcha talkin bout, Willis ? :neutral_face: (very old frase from Gary Coleman).

When I say Social Login, I am referring to Keycloak integrated with Google (as the Identity Provider). The app is integrated with Keycloak, so Keycloak triggers Single Logout and sends the Back-Channel Logout to the RP (if registered).

1 Like