Skip to content

Roundcube session survives OIDC logout #2

@skug67

Description

@skug67

I'm running Roundcube side-by-side w/Nextcloud (actually embedded in an i-frame using Nextcloud's "external" app) with Keycloak OIDC as the login mechanism for both. SLO works perfectly. But SSO isn't working -- I need to log out of Nextcloud and Roundcube separately. In particular I've discovered that logging out of Nextcloud (and successfully deleting the Keycloak OIDC session) still leaves a valid Roundcube session cookie. Is there some way to ensure that Roundcube looks for both the OIDC session as well as its own session cookie?

Metadata

Metadata

Assignees

No one assigned

    Labels

    help wantedExtra attention is needed

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions