Ory is the largest open source community in the world for cloud software application security. We maintain advanced open source security software solving authentication, authorization, access control, application network security, and delegation. Ory implements a variety of industry and best-practice standards including OAuth 2.0 / OAuth 2.1, OpenID Connect, Zero Trust Networking, Google Zanzibar Policy Framework, FIDO2 U2F, WebAuthn, TOTP, and more.

Ory Community

Hi, just wondering why there is no hooks in flows.logout.after ?
is it by design or bugs?

context: i want to blacklisted jwt token that generated by oathkeeper, when user logout

Hey <@U04UQ28TX9Q>
I am not sure but I  think there was just no use case for it so far.
Feel free to open a feature request issue on <http://github.com/ory/kratos|github.com/ory/kratos>

Hi <@U011D3UQKNY>, thank you for responding!
yeah i dont think its a bug, the workaround solution is quite simple, the frontend just need to hit another api to blacklist that jwt, and save/cache it on cache db for couple minutes, just like we define ttl in oathkeeper mutators

Hi <@U04UQ28TX9Q>,
I also need this hook - did you create new feature request for this?

<@U02TNTMUT6J> no, im not creating feature request, as i explained above, the fe just need to hit my another api to blacklist that jwt token