JWT Token is not invalidated on logout from browser

Question

JWT Token is not invalidated on logout from browser

Closed this issue a month ago · 1 comments

raksrivastava commented 4 months ago

Is there an existing issue for this?

I have searched the existing issues

Current behavior

JWT Token is not invalidated on logout from browser

Minimum reproduction code

No response

Steps to reproduce

No response

Expected behavior

I have logout from browser, but still can get data from /me API

oidc-provider version

7.14.3

nest-oidc-provider version

1.1.1

NestJS version

7.6.0

Packages versions

Node.js version

18

In which operating systems have you tested?

macOS
Windows
Linux

Other

No response

Answer 1 · 2024-10-02T05:27:30.000Z

Hello @raksrivastava! The JWT token is stateless and has an expiration date, meaning it remains valid until that date, even after you log out.

BTW, this library serves as an integration between oidc-provider and Nest. If you need further assistance, I recommend visiting the oidc-provider project and perhaps starting a discussion there.