docs(oidc): clarify post_logout_redirect_uri usage on end_session endpoint (#8480)

# Which Problems Are Solved There was some confusion why the `post_logout_redirect_uri` would not be used on the `end_session` endpoint. # How the Problems Are Solved Explicitly add that it will be ignored if both `id_token_hint` and `client_id` are not sent. # Additional Changes None # Additional Context None --------- Co-authored-by: Tim Möhlmann <tim+github@zitadel.com>
2025-08-11 17:57:33 +00:00 · 2024-08-27 17:26:42 +02:00
parent 1ce9a4322e
commit bc2c2feefd
1 changed files with 2 additions and 0 deletions
--- a/docs/docs/apis/openidoauth/endpoints.mdx
+++ b/docs/docs/apis/openidoauth/endpoints.mdx
@@ -665,6 +665,8 @@ No parameters are needed apart from the user agent cookie, but you can provide t
 The `post_logout_redirect_uri` will be checked against the previously registered uris of the client provided by the `azp` claim of the `id_token_hint` or the `client_id` parameter.
 If both parameters are provided, they must be equal.

+If neither an `id_token_hint` nor a `client_id` parameter is provided, the `post_logout_redirect_uri` will be ignored.
+
 ## jwks_uri

 `{your_domain}/oauth/v2/keys`