Logout not Possible when using Pinniped with Webapplication.

[acp-coder]

Is your feature request related to a problem?

When using Pinniped as Identity Provider for my Web Application, i can't perform a logout, since ther is no logout Endpoint (unless i haven't found it yet)

Describe the solution you'd like

I would like a end_session_endpoint also declared in the .well-known/openid-configuration like it is standard in OIDC Logins.

Describe alternatives you've considered

Alternative, an other method to perform a correct logout, that i can implement in my application.

Additional context

Thanks for your work!
Kind Regards

[cfryanr]

Hi @acp-coder, thanks for creating this issue.

You are correct that the Pinniped Supervisor currently does not offer a server-side logout mechanism for web apps to use. Currently, you can cause a client-side "logout" by having your client (your web app) simply forget the tokens that were issued by the Supervisor for the user's session. I agree it could be a nice feature to offer a logout endpoint which removes the session entirely from the Pinniped Supervisor server.

[acp-coder]

Thanks for the quick answer!
I am now handling client-side, by deleting the active session in my webapp.
Feel free to close this issue if the feature implementing it on the supervisor is not prioritized by you, otherwise keep it open as long as it takes, I'm happy to migrate my current solution if sometime, this is implemented.