Drupal

Follow the steps below to configure Single Logout (SLO) between your Drupal site and Keycloak:

1. Update the Logout URL in the Drupal miniOrange OAuth Client module Configuration

1. Navigate to the miniOrange OAuth Client module configuration.
2. Go to the Client Settings tab of your App Client configuration.
3. Scroll down to the Logout Settings section.
4. Enable the Single Logout checkbox.
5. In the IdP Session Logout Endpoint URL field, add your provider’s logout URL. (http://{keycloak-server}/realms/{realm-name}/protocol/openid-connect/logout)
6. Check the box “Include ID Token in End Session Endpoint”.

2. Update Logout Settings in Keycloak

1. Log in to your Keycloak Admin Console.
2. Navigate to your client configuration (the client representing your Drupal site).
3. Scroll down to the field Valid Post Logout Redirect URIs.
4. Add your Drupal site Base URL 
5. Save the configuration.

3. Test the SLO Flow

1. Log in via Keycloak SSO.
2. Log out from Drupal and confirm that the session is terminated both in Drupal and Keycloak.
3. Verify that you are redirected correctly after logout.
   
   You have now successfully set up Single Logout (SLO) between Drupal and Keycloak.
   
   If you encounter any issues, please feel free to reach out to us at drupalsupport@xecurify.com.