Merge pull request #127 from Azure-Samples/tibre/signoutLoginHint

Removing login_hint from signout

Author: Tiago Brenck

1-WebApp-OIDC/1-6-SignOut/README.md

@@ -53,25 +53,19 @@ from <https://github.com/aspnet/AspNetCore/blob/master/src/Azure/AzureAD/Authent
 
 ### Intercepting the call to the logout endpoint
 
-The ASP.NET Core OpenIdConnect middleware enables your app to intercept the call to the Microsoft identity platform logout endpoint by providing an OpenIdConnect event named `OnRedirectToIdentityProviderForSignOut`. The web app uses it to attempt to avoid the select account dialog to be presented to the user when signing out. This interception is done in the `AddAzureAdV2Authentication` of the `Microsoft.Identity.Web` reusable library. See [StartupHelpers.cs L58-L66](https://github.com/Azure-Samples/active-directory-aspnetcore-webapp-openidconnect-v2/blob/b87a1d859ff9f9a4a98eb7b701e6a1128d802ec5/Microsoft.Identity.Web/StartupHelpers.cs#L58-L66)
+The ASP.NET Core OpenIdConnect middleware enables your app to intercept the call to the Microsoft identity platform logout endpoint by providing an OpenIdConnect event named `OnRedirectToIdentityProviderForSignOut`.
 
 ```CSharp
 public static IServiceCollection AddAzureAdV2Authentication(this IServiceCollection services,
                                                             IConfiguration configuration)
 {
-    ...
     services.Configure<OpenIdConnectOptions>(AzureADDefaults.OpenIdScheme, options =>
     {
-        ...
         options.Authority = options.Authority + "/v2.0/";
-        ...
-        // Attempt to avoid displaying the select account dialog when signing out
+        
         options.Events.OnRedirectToIdentityProviderForSignOut = async context =>
         {
-            var user = context.HttpContext.User;
-            context.ProtocolMessage.LoginHint = user.GetLoginHint();
-            context.ProtocolMessage.DomainHint = user.GetDomainHint();
-            await Task.FromResult(0);
+            //Your logic here
         };
     }
 }

Microsoft.Identity.Web/README.md

@@ -7,7 +7,7 @@ This library contains a set of reusable classes useful in Web Applications and W
 The library contains helper classes to:
 
 - **Bootstrap the web resource from the Startup.cs file** in your web application by just calling a few methods
-  - `AddAzureAdV2Authentication` to add authentication with the Microsoft Identity platform (AAD v2.0), including managing the authority validation, and the sign-out.
+  - `AddAzureAdV2Authentication` to add authentication with the Microsoft Identity platform (AAD v2.0), including managing the authority validation.
 
     ```CSharp
     services.AddAzureAdV2Authentication();

Microsoft.Identity.Web/StartupHelpers.cs

@@ -78,17 +78,6 @@ public static IServiceCollection AddAzureAdV2Authentication(this IServiceCollect
                 // Force the account selection (to avoid automatic sign-in with the account signed-in with Windows)
                 //options.Prompt = "select_account";
 
-                // Handling the sign-out
-                options.Events.OnRedirectToIdentityProviderForSignOut = async context =>
-                {
-                    var user = context.HttpContext.User;
-
-                    // Avoid displaying the select account dialog
-                    context.ProtocolMessage.LoginHint = user.GetLoginHint();
-                    context.ProtocolMessage.DomainHint = user.GetDomainHint();
-                    await Task.FromResult(0);
-                };
-
                 // Avoids having users being presented the select account dialog when they are already signed-in
                 // for instance when going through incremental consent
                 options.Events.OnRedirectToIdentityProvider = context =>