Ory OAuth2: OIDC Logout

Ory OAuth2 now implements the logout endpoint for OpenID Connect (OIDC) protocol, which makes signing out from applications easy and secure.

By calling

https://<slug>.projects.oryapis.com/oauth2/sessions/logout

the user's current session is terminated, allowing for end-user initiated logout and removing the need for calls to Ory OAuth2 administrative APIs.

Note that logging out via OAuth2 does not end a the user session on the identity provider: You wouldn't want an app that uses social sign-in to log you out of your Google or Facebook account, only out of the particular app; in a similar fashion, Ory Identities sessions remain active so that the user can keep using other applications that use the same federated identity.