We have a tird party app that signs in through internal login via OAuth2.

There is a rest api method, signout, consumed by the tird party app to do it´s signout.

Signout uses User_Logout and an http redirect 302, but it does not work, the user stays logged in.

I think its because of the session, when tird party app calls signout its has no session...

By the acess token i can acess user id.

My question is, how can logout a specific user clearing his session?

Can you help me on this?

Best regards,


Please correct me on below:

- Your third-party app is using the the REST API method of yours to signout the user.

Hi Assif,

Yes, they use REST API method to signout the user.