Overview#

OpenID Connect Session Management specification complements the OpenID Connect (OpenID Connect Core 1.0) specification by defining how to monitor the Resource Owner's login status at the Identity Provider (IDP) on an ongoing basis so that the Relying Party can logout a Resource Owner who has logged out of the Identity Provider (IDP).

by defining how to monitor the End-User's login status at the OpenID Connect Provider on an ongoing basis so that the Relying Party can log out an End-User who has logged out of the OpenID Connect Provider.

Both this specification and the OpenID Connect Front-Channel Logout OpenID.FrontChannel specification use front-channel communication, which communicate logout requests from the OpenID Connect Provider to Relying Party via the User-agent. In contrast, the OpenID Connect Back-Channel Logout 1.0 OpenID.BackChannel specification uses direct back-channel communication between the OpenID Connect Provider and Relying Parties being logged out.

OpenID Connect Session Management specification can be used separately from or in combination with OpenID Connect Front-Channel Logout 1.0 and/or OpenID Connect Back-Channel Logout 1.0.

OpenID Connect Session Management is defined in an OpenID Connect Specification

These OpenID Connect Provider OpenID Connect Discovery parameters MUST be included in the Server's discovery responses when OpenID Connect Session Management and Discovery are supported:

More Information#

There might be more information for this subject on one of the following:

Add new attachment

Only authorized users are allowed to upload new attachments.
« This page (revision-14) was last changed on 27-Jul-2017 11:38 by jim