You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: BFF/v4/MultiFrontendSSO/README.md
+6-5Lines changed: 6 additions & 5 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -36,9 +36,10 @@ This sample illustrates coordinated sign-out across multiple frontends that shar
36
36
4. Sign in to both frontends.
37
37
- The first frontend you're signing in into requires the following credentials: username = `bob`, password = `bob`. Once you've signed in, you have an active session in the Identity Provider.
38
38
- As long as you have an active session, you can now sign in into the other frontend application without being prompted for your credentials, demonstrating single sign-on.
39
-
5a. Sign out from any of the frontends.
40
-
- When you sign out from one of the frontend applications, this will trigger the sign out process at the BFF level. This includes signing you out from IdentityServer, which in return sends a back-channel logout notification to all other clients sharing the same user session, by making server-to-server HTTP POST requests to each client's configured `BackChannelLogoutUri`.
41
-
- Each client's back-channel endpoint receives the notification and clears its local session, effectively signing the user out of all frontends in the BFF client application.
42
-
5b. Sign out from IdentityServer at https://localhost:5001
43
-
- When you sign out directly at the level of IdentityServer, refresh your BFF client browser tab (or use the link back to one of the frontend apps) and notice that you have been signed out of both frontends.
39
+
5. Performing single sign-out:
40
+
1. Sign out from any of the frontends.
41
+
- When you sign out from one of the frontend applications, this will trigger the sign out process at the BFF level. This includes signing you out from IdentityServer, which in return sends a back-channel logout notification to all other clients sharing the same user session, by making server-to-server HTTP POST requests to each client's configured `BackChannelLogoutUri`.
42
+
- Each client's back-channel endpoint receives the notification and clears its local session, effectively signing the user out of all frontends in the BFF client application.
43
+
2. Sign out from IdentityServer at https://localhost:5001
44
+
- When you sign out directly at the level of IdentityServer, refresh your BFF client browser tab (or use the link back to one of the frontend apps) and notice that you have been signed out of both frontends.
44
45
6. Observe that once signed out of 1 frontend, that navigating to the 2nd frontend also indicates that you are not signed in.
0 commit comments