Description
Currently we use Microsoft for Authentication and when logging out this actually tries to log us out of our Microsoft Account rather than just logging us out of THIS SITE.
Enhancements
- Update the Authentication so that we can optionally configure the use of Google INSTEAD OF Microsoft
- Update this so that we are using a JWT with a Refresh Token for authentication. This should follow industry standards for lifetimes and flow.
- When the user logs out it should revoke the Refresh Token and clear OUR authenticated state rather than again reaching out to either Microsoft or Google.
Description
Currently we use Microsoft for Authentication and when logging out this actually tries to log us out of our Microsoft Account rather than just logging us out of THIS SITE.
Enhancements