Flutter app: How to implement a proper logout function?

azure flutter oauth-2.0 jwt azure-ad-b2c
1,185

I followed the below source to implement the below log out function using app auth written by David White.

Future<void> _logOut() async {
    try {
      //for some reason the API works differently on iOS and Android
      Map<String, String> additionalParameters;
      if (Platform.isAndroid) {
        //works on Android but will miss p parameter when redirected back to authorize on iOS
        additionalParameters = {
          "id_token_hint": _idToken,
          "post_logout_redirect_uri": _redirectUrl
        };
      } else if (Platform.isIOS) {
        // with p parameter when redirected back to authorize on iOS
        additionalParameters = {
          "id_token_hint": _idToken,
          "post_logout_redirect_uri": _redirectUrl,
          'p': '<tenantID>'
        };
      }
      await appAuth.authorizeAndExchangeCode(
        AuthorizationTokenRequest(
          _clientId,
          _redirectUrl,
          promptValues: ['login'],
          discoveryUrl: _discoveryURL,
          additionalParameters: additionalParameters,
          scopes: _scopes,
        ),
      );
    } catch (e) {
      print(e);
    }
    setState(() {
      _jwt = null;
    });
  }

source: https://www.detroitdave.dev/2020/04/simple-azure-b2c-flutter.html

Share:
1,185
Pilouni
Author by

Pilouni

Updated on December 18, 2022

Comments

  • Pilouni
    Pilouni over 1 year

    I have a flutter App using Azure B2C authentication. To achieve this I use the flutter appAuth package. The login process works fine but appAuth does not provide a logout functionality. After logging in I get an access token. Until now my logout was to delete this access token.

    The problem is, that Azure require a web app session lifetime of at least 15 minutes in the SignIn user flow. This means: If a user logs in and out within 15 minutes, he will automatically be logged in again. This makes a login with another user impossible.

    I hope to fix this behavior with a real logout instead of only deleting the access tokens. In found the following line of code in the Azure Active Directory documentation. But I cannot manage to get it running. Any suggestions for a logout function?

    GET https://{tenant}.b2clogin.com/{tenant}.onmicrosoft.com/{policy}/oauth2/v2.0/logout?post_logout_redirect_uri=https%3A%2F%2Fjwt.ms%2F

Recents

Why Is PNG file with Drop Shadow in Flutter Web App Grainy?
How to troubleshoot crashes detected by Google Play Store for Flutter app
Cupertino DateTime picker interfering with scroll behaviour
Why does awk -F work for most letters, but not for the letter "t"?
Flutter change focus color and icon color but not works
How to print and connect to printer using flutter desktop via usb?
Critical issues have been reported with the following SDK versions: com.google.android.gms:play-services-safetynet:17.0.0
Flutter Dart - get localized country name from country code
navigatorState is null when using pushNamed Navigation onGenerateRoutes of GetMaterialPage
Android Sdk manager not found- Flutter doctor error
Flutter Laravel Push Notification without using any third party like(firebase,onesignal..etc)
How to change the color of ElevatedButton when entering text in TextField

Related

how to get user profile with azure ad in flutter
How to use nativeclient redirect URI when authenticating with Microsoft Azure?
Azure AD B2C with Easy Auth Authentication with Google Flutter
Oauth2 Flutter Authorization Parameters
Azure build error: "Android Gradle plugin requires Java 11 to run. You are currently using Java 1.8"
flutter_web_auth doesn't redirect from WebView to the app after authorizing the access to my data in Flutter
Flutter: How to refresh token when token expires with ferry (graphql) client?
How to manage OAuth flow in mobile application with server
Flutter app multiplatform app with Windows Azure oauth2 login
HTTP Post oAuth 2 "Check the `grant_type` parameter"