Tenant Log for Successful Logout Has No User Information

Problem statement

Some tenant logs for a successful logout appear to have a user_id and user_name included in the log, but for others, these will have empty strings as values. What is the difference between these logs?

Symptoms

Example Log:

{
  "date": "2023-10-25T20:40:14.343Z",
  "type": "slo",
  "connection_id": "",
  "ip": "*********",
  "user_agent": "Other 0.0.0 / Other 0.0.0",
  "details": {
    "allowed_logout_url": []
  },
  "hostname": "mytenant.us.auth0.com",
  "user_id": "",
  "user_name": "",
  "log_id": "90020231025204014414936000000000000001223372054900584801",
  "_id": "90020231025204014414936000000000000001223372054900584801",
  "isMobile": false,
  "id": "90020231025204014414936000000000000001223372054900584801",
  "description": "User successfully logged out"
}

Solution

The tenant logs for a Successful Logout will have no user no user-specific data when the logout request made to Auth0 does not include the Auth0 cookies that identify the user’s session. In this instance, a successful logout response is still generated, but the user’s session is not terminated because the server cannot determine which session needs to end. Often this occurs because the user’s session has already ended so no Auth0 session cookie is sent in the logout request.

Related References: