App B (Next.js v14.2.17 using @auth0/nextjs-auth0 v3.6.0)
I want to achieve SSO such that if a user logs in through App A, they can seamlessly access App B (and vice versa) without re-entering credentials. However, once logged in, these two apps should maintain independent logout behavior:
• If the user logs out of App A, they should remain logged in on App B until their session naturally expires or they explicitly log out of App B.
• Likewise, logging out of App B should not affect the session on App A.
Essentially, shared login but local-only logout in each app.
Has anyone successfully configured this scenario with a similar setup?
Any guidance or examples on how to configure @auth0/nextjs-auth0 and an Auth0 tenant to get local-only logouts while preserving SSO would be greatly appreciated!
Welcome to the Auth0 Community and thank you for posting your inquiry.
Even though you have a SSO implementation the logout sessions within your applications are already independent from each other, meaning that if a user logs out of the Application1 that user will remain logged in on the Application2 and vice-versa. This is the natural behavior for the SSO protocol unless you have manually integrated either federated logout or implemented Single Logout.
Am I doing something wrong here? Since when I log out user from NextJS App B, I need to login again on React App A, which I don’t want to be that case.
We are simply on client side in NextJS we click on <a href="/api/auth/logout">Log Out</a>