From a7fa9b81cffe47f813361d6895c6a986414e5f55 Mon Sep 17 00:00:00 2001
From: Viktor Barzin <viktorbarzin@meta.com>
Date: Sun, 8 Feb 2026 00:29:02 +0000
Subject: [PATCH] Fix OIDC logout not redirecting back to app

Pass id_token_hint explicitly to signoutRedirect() so Authentik
honors the post_logout_redirect_uri and sends users back to the app.
---
 frontend/src/auth/authService.ts | 5 ++++-
 1 file changed, 4 insertions(+), 1 deletion(-)

diff --git a/frontend/src/auth/authService.ts b/frontend/src/auth/authService.ts
index c63b253..45d3d72 100644
--- a/frontend/src/auth/authService.ts
+++ b/frontend/src/auth/authService.ts
@@ -15,7 +15,10 @@ export const login = async (): Promise<void> => {
 
 export const logout = async (): Promise<void> => {
     try {
-        await userManager.signoutRedirect();
+        const user = await userManager.getUser();
+        await userManager.signoutRedirect({
+            id_token_hint: user?.id_token,
+        });
     } catch (error) {
         console.error('Logout redirect failed:', error);
         throw parseOidcError(error);