Ask Your Question

Revision history [back]

click to hide/show revision 1
initial version

answered 2021-04-09 00:00:00 +0000

scrum gravatar image

Yes, the Backchannel-Logout feature in IdentityServer 4 can be used to reject a Logout-Token resulting in a bad request. When a Logout-Token is received, the validation of the token can be done, and if the token is invalid or if some required parameters are missing or incorrect, a bad request response can be sent back to the issuer. This ensures that only valid tokens are accepted, and helps to prevent any unauthorized or erroneous logout requests.


Copyright QStack.ai, 2010-2023. Content on this site is licensed under the Creative Commons Attribution Share Alike 3.0 license.
about | faq | help | privacy policy | terms of service | contact