From 5590e3664b4d9f4b932122d45e08f01e80ead3e1 Mon Sep 17 00:00:00 2001 From: ModMaker101 <119018978+ModMaker101@users.noreply.github.com> Date: Sun, 20 Jul 2025 13:15:40 -0400 Subject: [PATCH 1/2] Update logout to endsession --- integrations/aspnet-core.md | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/integrations/aspnet-core.md b/integrations/aspnet-core.md index 03189828..6386f084 100644 --- a/integrations/aspnet-core.md +++ b/integrations/aspnet-core.md @@ -304,14 +304,14 @@ that allows generating a unique `request_uri` and caching the received requests an automatic redirection to the current page with the other parameters removed is triggered by OpenIddict and the token entry is redeemed once the authorization or logout demand has been completed by the user. -To enable this feature, you need to use the dedicated `EnableAuthorizationRequestCaching()` and/or `EnableLogoutEndpointPassthrough()` APIs: +To enable this feature, you need to use the dedicated `EnableAuthorizationRequestCaching()` and/or `EnableEndSessionEndpointPassthrough()` APIs: ```csharp services.AddOpenIddict() .AddServer(options => { options.EnableAuthorizationRequestCaching() - .EnableLogoutEndpointPassthrough(); + .EnableEndSessionEndpointPassthrough(); }); ``` From 02e47d17aec9eb7ffa484e9db0491ff40fdcbc1f Mon Sep 17 00:00:00 2001 From: ModMaker101 <119018978+ModMaker101@users.noreply.github.com> Date: Tue, 22 Jul 2025 16:27:31 -0400 Subject: [PATCH 2/2] Update aspnet-core.md --- integrations/aspnet-core.md | 18 ++++++++---------- 1 file changed, 8 insertions(+), 10 deletions(-) diff --git a/integrations/aspnet-core.md b/integrations/aspnet-core.md index 6386f084..fc545eb1 100644 --- a/integrations/aspnet-core.md +++ b/integrations/aspnet-core.md @@ -317,21 +317,19 @@ services.AddOpenIddict() ### Authentication scheme forwarding -To simplify triggering authentication operations for a specific client registration, the OpenIddict client offers a built-in authentication scheme -forwarding feature that allows using the provider name assigned to a client registration as an authentication scheme in ASP.NET Core: - -```csharp -app.MapGet("challenge", () => Results.Challenge(properties: null, authenticationSchemes: [Providers.GitHub])); -``` +To simplify handling large authorization or end session process, the OpenIddict server ASP.NET Core integration includes a built-in feature +that allows generating a unique `request_uri` and caching the received requests in a request token persisted in OpenIddict's tokens table: when this feature is enabled, +an automatic redirection to the current page with the other parameters removed is triggered by OpenIddict and the token entry is redeemed +once the authorization or end session demand has been completed by the user. -This feature is enabled by default but can be disabled if necessary using `DisableAutomaticAuthenticationSchemeForwarding()`: +To enable this feature, you need to use the dedicated `EnableAuthorizationRequestCaching()` and/or `EnableEndSessionEndpointPassthrough()` APIs: ```csharp services.AddOpenIddict() - .AddClient(options => + .AddServer(options => { - options.UseAspNetCore() - .DisableAutomaticAuthenticationSchemeForwarding(); + options.EnableAuthorizationRequestCaching() + .EnableEndSessionEndpointPassthrough(); }); ```