fix: include client_id in Logto end-session redirect

Logto needs client_id to validate the post_logout_redirect_uri and auto-redirect back to the app. Without it, user gets stuck on Logto's end-session success page. Note: post_logout_redirect_uri must be registered in Logto Console under the app's "Post sign-out redirect URIs". Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
2026-04-12 21:58:27 +02:00
parent 23cfbf7e4b
commit cba3804b31
1 changed files with 2 additions and 1 deletions
--- a/src/server/index.ts
+++ b/src/server/index.ts
@@ -102,8 +102,9 @@ app.get("/logout", async (c) => {
 	const issuer = process.env.OIDC_ISSUER;
 	const postLogoutRedirect = new URL("/", c.req.url).origin;
 	if (issuer) {
 		const clientId = process.env.OIDC_CLIENT_ID;
 		return c.redirect(
-			`${issuer}/session/end?post_logout_redirect_uri=${encodeURIComponent(postLogoutRedirect)}`,
+			`${issuer}/session/end?client_id=${encodeURIComponent(clientId || "")}&post_logout_redirect_uri=${encodeURIComponent(postLogoutRedirect)}`,
 		);
 	}
 	return c.redirect("/");