I'm using "EasyAuth" on a web an Azure App Service.
https://docs.microsoft.com/en-us/azure/app-service/app-service-authentication-how-to
Everything works as expected but not the logout process. When I call https://mysite/.auth/logout from the browser, I lose my Microsoft account session in the browser and I find my self signed out from all Microsoft related website (e.g. outlook.com, onedrive, etc) because the logout process triggered by EasyAuth forces the logout from the identity provider instead of simply logging out from my web-site.
As far as I understand, this is mentioned in the documentation (link above):
For Azure Active Directory and Google, performs a server-side sign-out on the identity provider.
A question and a note:
- is there a way to logout from my webapp without loosing access to other microsoft services.
- the documentation mentions Google as same behavior but in my tests, when I logout during a visit authenticated by Google, I do not find my self kicked out of Google services. So I suppose documentation is wrong.
Any idea / suggestions?