<html>
<head>
<meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1">
</head>
<body style="word-wrap: break-word; -webkit-nbsp-mode: space; -webkit-line-break: after-white-space; color: rgb(0, 0, 0); font-size: 14px; font-family: Calibri, sans-serif;">
<div>According to this code:</div>
<div><a href="https://github.com/keycloak/keycloak/blob/master/adapters/oidc/adapter-core/src/main/java/org/keycloak/adapters/CookieTokenStore.java#L100"></a><a href="https://github.com/keycloak/keycloak/blob/master/adapters/oidc/adapter-core/src/main/java/org/keycloak/adapters/CookieTokenStore.java#L100"></a><a href="https://github.com/keycloak/keycloak/blob/master/adapters/oidc/adapter-core/src/main/java/org/keycloak/adapters/CookieTokenStore.java#L100">https://github.com/keycloak/keycloak/blob/master/adapters/oidc/adapter-core/src/main/java/org/keycloak/adapters/CookieTokenStore.java#L100</a></div>
<div><br>
</div>
<div>The cookie is only reset at the place where the logout path is. For instance:</div>
<div><br>
</div>
<div>Applications serve at /foo/app and /bar/app</div>
<div>And logout path is just /logout</div>
<div><br>
</div>
<div>In that case that won&#8217;t work because cookiePath for removeCookie would be /logout.</div>
<div><br>
</div>
<div>The problem is the user is still logged in within the period of Access Token Lifespan.</div>
<div><br>
</div>
<div>It doesn&#8217;t make sense to have different logout URL for each application as such /bar/logout and /foo/logout .</div>
<div><br>
</div>
<div>Is there a way to just keep single logout which logs out the user for each application?</div>
<div><br>
</div>
<div>Thanks,</div>
<div>Sarp Kaya</div>
</body>
</html>