OAuth - wrong logout link

[diginote]

Fider Self Hosted
latest docker stable version: getfider/fider:stable

Describe the bug
No Logout URL definition for OAuth-Providers. When user click signout you need to call a link of the OAuth-Provider with a redirct to the domain where fider is accessable. Currently fider do not have an option to define an logout URL in then OAuth-Provider settings und the logout is only locally. The session on the OAuth-Provider is not closed. Therfore you are not really logged out. When you click on the login button you will be redirected to the OAuth-Provider where your session is active und you will be immediately redirected to fider again without an input of your credentials.

To Reproduce
Steps to reproduce the behavior:

1. Go to Authentication-Settings an configure keycloak as OAuth-Provider
2. login with your OAuth credentials
3. logout
4. try to login again -> you do not have to input your credential, because your last session on OAuth-Provider was not properly closed und is reused.

Expected behavior
When I logout you have to call the OAuth-Provider endpoint with a redirect url to finder domain. For that you need to define that endpoint in the Authentication-Settings. Currently there is no such setting and the logout link is wrong.

[diginote]

An openid connect logout is described here: https://www.keycloak.org/2022/04/keycloak-1800-released#_openid_connect_logout

[Loapu]

I would also love to see this implemented, as it is rather tedious to not get logged out of the OAuth session.