Hello ,
In keycloak sso, i am facing this back channel logout issue. Let me elaborate the problem statement with following points :
- Login to SSO
- Click on one of the child application(Example Billing application). Once clicked , after authentication from keycloak , application will open in new tab.
- Performed some operation inside Billing application.
- Without logout from Billing application, will close that tab, comes back to SSO screen , then logging out from SSO.
So once i logout from SSO, it should logout from child application too if any session available.
I have tried iframe session check from application side (Example billing application) here which is half way working but that is not fixing the exact problem . Those points explanation mentioned as follows :
- Login to SSO
- Click on one of the child application(Example Billing application). Once clicked , after authentication from keycloak , application will open in new tab.
- Performed some operation inside Billing application.
- Billing application is active in browser tab, comes back to SSO screen if we perform logout from SSO, as billing application is active in other tab, through iframe it will check the session. If not found then it will logout.
So my point here is if that particular application is active then using iframe it is getting logged out if we are logging out from SSO. But if we close that application and logging out from sso, back channel logout is not happening.
So please help me out here to resolve my issue here.
Thanks in advance.