Skip to content
Duende Software Docs
Livestream: Custom Authentication in ASP.NET Core - RemoteAuthenticationHandler with Elin and Robert from Active Solution. Register Now!

BFF Back-Channel Logout Endpoint Extensibility

The back-channel logout endpoint has several extensibility points organized into two interfaces. The IBackChannelLogoutEndpoint is the top-level abstraction that processes requests to the endpoint. This service can be used to add custom request processing logic or to change how it validates incoming requests. When the back-channel logout endpoint receives a valid request, it revokes sessions using the ISessionRevocationService.

Request Processing

Section titled “Request Processing”

You can add custom logic to the endpoint by implementing the IBackChannelLogoutEndpoint .

ProcessRequestAsync is the top-level function called in the endpoint service and can be used to add arbitrary logic to the endpoint.

public class CustomizedBackChannelLogoutService : IBackChannelLogoutEndpoint
{
    public override Task ProcessRequestAsync(HttpContext context, CancellationToken ct)
    {
        // Custom logic here
    }
}

Session Revocation

Section titled “Session Revocation”

The back-channel logout service will call the registered session revocation service to revoke the user session when it receives a valid logout token. To customize the revocation process, implement the ISessionRevocationService.