My organization has 2 tenants, one for our staff and one for our users.
We have a mobile app that has a login screen with 2 separate buttons.
One is for the user login and one is for the staff login.
Our staff tenant has been setup as a connection to the user tenant per instructions in this link:
The reason we have setup the staff tenant as a connection for our user tenant is because our AWS AppSync has OIDC Authorization with the Issuer URL set as our user tenant.
Our mobile application uses web auth with a hosted UI. Everything works as intended when our users login and logout. The problem that has arisen is logging out from our staff tenant connection.
When a staff member logs out and is taken to the login screen, if they hit the staff login button they are automatically taken back into the app with their previous login (they don’t have the option to login as another staff member).
The above behaviour happens when I am logging out on the user tenant. If I set the logout to be on the staff tenant the following behaviour happens.
Staff logs out and is taken to the login screen, and now have the option to login as another staff member. However, if they try to login as a user, once again the login screen is bypassed and they are taken in the app and have a user session with the staff login.
When I login to https://manage.auth0.com and look at the logs, I see that the logout is successful on each tenant, but for some reason I can’t completely logout of both tenants.
I should be able to invoke a logout on the user tenant, and that should force a logout of the connection too.
Can someone from auth0 please investigate this?