- What does the error "Invalid parameter: id_token_hint" mean?
- Please ensure that the Logout Endpoint and Send ID Token settings (in the case of a custom OpenID) are correctly configured
- If these settings are already configured, this error indicates that the id_token_hint parameter, which is used to validate the user session during logout, was not found in the database. This typically occurs when the session associated with the id_token has been terminated or expired on the provider's side (e.g., Keycloak). The issue usually resolves when a new session is created and a new id_token is issued.
- Why might the id_token not be found in the database?
The id_token may not be found in the database if the session has already been terminated or expired on the OAuth/OpenID Connect provider's side. This can occur if the provider has ended the session or if the id_token was deleted due to reaching the maximum storage duration set in your configuration.