API ReferenceApplications
POST
/oauth2/v1/logout

Request Body

application/json

id_token_hint?string
client_id?string

Legacy apps send the projectID (a descope_id); dedicated clients send a caller-imported custom client_id, so this is capped by length (matching the authorize/token endpoints) rather than the descope_id format, and resolved/validated at the Controller level.

post_logout_redirect_uri?string
state?string
ssoAppId?string
project_id?string

OIDC end session POST endpoint

curl -X POST "https://api.descope.com/oauth2/v1/logout" \  -H "Content-Type: application/json" \  -d '{}'
{}
export interface Response {}
Was this helpful?

OIDC End Session GET

OIDC end session GET endpoint

OIDC Authorize GET

OIDC GET authorization endpoint start (by projectId, for an imported client_id)