How Does Single Log Out Function - Digital-Platform-Services/My-NS-Account GitHub Wiki

Home

My NS Account follows single logout principles. Here are two scenarios which explain.

Logout From a Service

While logged into both "Service A" and "Service B", the user selects logout from "Service A". The expected result, aligning with single logout expectations, is that:

  1. The user is logged out of Service A
  2. The user is logged out of Service B
  3. The user is logged out of My NS Account

Logout From My NS Account

While logged into both "Service A" and "Service B", the user selects logout from My NS Account directly. The expected result, aligning with single logout expectations, is that:

  1. The user is logged out of My NS Account
  2. The user is logged out of Service A
  3. The user is logged out of Service B

Caveats

My NS Account will send logout messages to all services that it understands to have an active session, and the service is expected to acknowledge the logout request at a minimum. However, there are instances where logout messages are not processed nor acknowledge:

  1. If acknowledged but not processed by the service (or the logout fails in the service), there is no notification to the user
  2. If not acknowledged and the user logs out from the service, there is no notification to the user that other services did not logout
  3. If not acknowledged and the user logs out directly from My NS Account, My NS Account will display a "Partial Logout" message