Hello, we have developed a custom application that leverages Crowd SSO. In the existing implementation, leveraging the SAML logoff.action, we are unable to return to our application after a logout. The user is left at the Crowd login page, and if the user logs in again here, they are not brought back to our application. This has confused our users.
What is the recommended approach to offering a logout action in our custom application that performs a Crowd logoff but also returns the user to our application?
The developer documentation references a sample application with reference to logout, but I'm unable to locate this application.
We are investigating the use of (experimental) Crowd REST APIs to destroy sessions programmatically rather than redirect, but the docs don't include much detail. After experimenting it appears that we need a named user credential to call these and cannot use our custom application credential. We are unsure about this approach, and are interested in how others have handled logoff when developing a custom application that integrates with Crowd SSO.
