Sign users out of Okta

Sign users out of Okta by ending their session on the Okta Authorization Server.

• Android
• Angular
• ASP.NET
• ASP.NET Core 2.x
• ASP.NET Core 3.x
• iOS
• Node Express
• React
• Spring Boot
• Vue.js

ASP.NET Core hosts an internal sign-out handler at /signout/callback. You need to add it as a valid Logout redirect URI in Okta. See Define the signout callback for more information on defining this URI in your application settings.

Open the controller where you handle the sign-out process and update the SignOut action. This time you need to also sign the user out of the Okta OIDC middleware with OktaDefaults.MvcAuthenticationScheme:

public class AccountController : Controller
{
    [HttpPost]
    public IActionResult SignOut()
    {
        return new SignOutResult(new[] { OktaDefaults.MvcAuthenticationScheme, 
                                         CookieAuthenticationDefaults.AuthenticationScheme });
    }
}

Then, update your using statements to import the following namespaces:

using Microsoft.AspNetCore.Authentication.Cookies;
using Okta.AspNetCore;

After users sign out of Okta, they are redirected to the location defined in Define the sign-out callback section.

Next: Sign users out of your app