Propagate sign out to OAuth server #40
Comments
|
I believe this is standard behaviour? You could offer a button to also logout from OAuth, but I'd leave the choice to the user. |
|
Why would a user want to sign out from Tab, but not from OAuth?
…On Fri, 10 Aug 2018 at 09:51 Felix Van der Jeugt ***@***.***> wrote:
I believe this is standard behaviour? You could offer a button to also
logout from OAuth, but I'd leave the choice to the user.
—
You are receiving this because you authored the thread.
Reply to this email directly, view it on GitHub
<#40 (comment)>, or mute
the thread
<https://github.com/notifications/unsubscribe-auth/ADE9cylwnh9IIcGdgnnX2iunONF2Zhzfks5uPTuCgaJpZM4V1pRc>
.
|
|
They might want to visit tap next, and not log in to OAuth again? And it's just not your decision, your app shouldn't mess with another app just because they authenticated a user. |
|
The problem is that there is no straightforward way to log out of your Zeus account. If you're on someone else's computer and you log out, that person is able to log in again as your user. I can understand that this is something you don't want to happen with google, but Zeus OAuth is really only used for our custom applications. If a user logs out, he really means to be logged out from Zeus I think. |
|
Another option may be to have a button 'Also sign out of Zeus' after you've logged out. |
:-) |
|
I must've read over that part of your comment. But OK, I guess that such a button would be the best. |
If you log out, you can immediately log in again without providing credentials because you are not logged out with the OAuth server. This should be fixed (redirect to https://adams.ugent.be/oauth/accounts/logout/ or something).
This should also be fixed for Tap.
The text was updated successfully, but these errors were encountered: