I am looking for a way to prevent Keycloak logout when a user logs out of an external identity provider (E.g. Facebook using OpenID). Currently, Keycloak checks for the Facebook session every few minutes and if the Facebook session is expired, the user is logged out.
I have tried disabling the front-channel logout and increasing SSO timeouts, but neither has worked. I believe that increasing the time for the access token might solve this issue, but I don’t want to increase the access token time to 30 days.
I understand that this is not recommended, but we have a business use case that requires this behaviour. I am looking for other ways to achieve this. Can anyone provide any suggestions or solutions?