BFF: Back-Channel Logout

[wantwi]

I’m trying to configure Back-Channel Logout in my React app.
In my Program.cs, I added:
builder.Services.AddBff(options =>
{
options.BackchannelLogoutAllUserSessions = true;
})
.AddRemoteApis();

and also added: app.MapBffManagementEndpoints();

On the IdentityServer side, my client is configured with::
BackChannelLogoutUri = "https://my-bff-app.com/bff/backchannel",
BackChannelLogoutSessionRequired = true

However, when I log out from another client, the BFF session in my React app is not terminated.

What am I missing to get back-channel logout working?

[maartenba]

The backchannel logout is between the identity provider and the BFF Client (the host of your React application); you still need to implement the last part, which would be to periodically check the user management endpoints (making sure to keep the session from sliding). At this point, you'd code what would happen if the session has expired: redirect the user, show a dialog, close the window, etc.

• https://docs.duendesoftware.com/bff/fundamentals/session/management/back-channel-logout/
• https://docs.duendesoftware.com/bff/fundamentals/session/management/user/#cookie-sliding