Process Logout

Processes an RP-Initiated Logout request, revoking credentials and returning front-channel logout URIs for the frontend to render.

Required scopes: private

Authorization

BearerAuth

AuthorizationBearer <token>

JWT access token for internal API access. Requires 'private' scope for most endpoints, 'admin' scope for administrative operations.

In: header

Header Parameters

Connect-Protocol-Version*number

Define the version of the Connect protocol

Value in1

Connect-Timeout-Ms?number

Define the timeout, in ms

Request Body

application/json

idTokenHint?string|null

The ID token previously issued to the RP (used to identify the user)

clientId?string|null

Client ID (required if id_token_hint is not provided)

Formatuuid

postLogoutRedirectUri?string|null

URI to redirect to after logout (must be registered)

Formaturi

state?string|null

State parameter to return in redirect

[key: string]?never

Response Body

`application/json`

curl -X POST "https://auth.xeonr.io/xeonr.auth.private.v1.OAuthService/ProcessLogout" \
  -H "Connect-Protocol-Version: 1" \
  -H "Content-Type: application/json" \
  -d '{}'

curl -X POST "https://auth.xeonr.io/xeonr.auth.private.v1.OAuthService/ProcessLogout" \  -H "Connect-Protocol-Version: 1" \  -H "Content-Type: application/json" \  -d '{}'

{
  "frontchannelLogoutUris": [
    {
      "uri": "https://app1.example.com/logout?sid=abc123&iss=https://auth.xeonr.io",
      "clientId": "550e8400-e29b-41d4-a716-446655440000",
      "clientName": "My OAuth App"
    }
  ],
  "postLogoutRedirectUri": "https://myapp.example.com/logged-out",
  "state": "logout-state-xyz",
  "success": true,
  "credentialsRevoked": "3"
}

{
  "code": "not_found",
  "message": "string",
  "details": [
    {
      "type": "string",
      "value": "string",
      "debug": {}
    }
  ]
}

Process Logout

Authorization

Header Parameters

Request Body

Response Body

200application/json

defaultapplication/json

`application/json`

`application/json`