Skip to content

[All] Add post_logout_redirect_uri configuration #531

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Open
pylanglois wants to merge 9 commits into
base: main
Choose a base branch
from
+30 −1
Open

[All] Add post_logout_redirect_uri configuration #531

Changes from all commits
Commits
Show all changes
9 commits
Select commit Hold shift + click to select a range
75151c7
Adding logout with redirection
Aug 5, 2022
6525712
Use the default URI when the user does not exist
Aug 5, 2022
0035421
[pre-commit.ci] auto fixes from pre-commit.com hooks
pre-commit-ci[bot] Aug 8, 2022
a3144cb
returning early to minimize embedded if statement
Aug 8, 2022
764822b
Merge remote-tracking branch 'origin/id_token_hint_redirect' into id_…
Aug 8, 2022
0f718ca
[pre-commit.ci] auto fixes from pre-commit.com hooks
pre-commit-ci[bot] Aug 8, 2022
ed21e4e
Merge remote-tracking branch 'upstream/main' into id_token_hint_redirect
May 19, 2023
fa5d72f
Using url_concat to build the redirect_uri
May 19, 2023
f57c84e
[pre-commit.ci] auto fixes from pre-commit.com hooks
pre-commit-ci[bot] May 19, 2023
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
31 changes: 30 additions & 1 deletion oauthenticator/oauth2.py
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -232,11 +232,32 @@ async def handle_logout(self):

async def render_logout_page(self):
if self.authenticator.logout_redirect_url:
self.redirect(self.authenticator.logout_redirect_url)
redirect_uri_params = await self.get_redirect_uri_params()
url = url_concat(
self.authenticator.logout_redirect_url, redirect_uri_params
)
self.redirect(url)
return

return await super().render_logout_page()

async def get_redirect_uri_params(self):
redirect_uri_params = dict()
user = list(self.users.values())
if not user:
return redirect_uri_params

auth_state = await user[0].get_auth_state()
if auth_state['id_token']:
redirect_uri_params['id_token_hint'] = auth_state['id_token']

if self.authenticator.post_logout_redirect_uri:
redirect_uri_params[
'post_logout_redirect_uri'
] = self.authenticator.post_logout_redirect_uri

return redirect_uri_params


class OAuthenticator(Authenticator):
"""Base class for OAuthenticators
Expand Down Expand Up @@ -323,6 +344,14 @@ def _refresh_pre_spawn(self):
def _logout_redirect_url_default(self):
return os.getenv("OAUTH_LOGOUT_REDIRECT_URL", "")

post_logout_redirect_uri = Unicode(
config=True, help="The URI where the client is redirected after logout"
)

@default("post_logout_redirect_uri")
def _post_logout_redirect_uri(self):
return os.getenv("OAUTH2_POST_LOGOUT_REDIRECT_URI", "")

custom_403_message = Unicode(
"Sorry, you are not currently authorized to use this hub. Please contact the hub administrator.",
config=True,
Expand Down