google account logout and redirect

Asked 17/11, 2010 at 6:57 Answered 30/3, 2019 at 16:10

I am using openid to log the user in.(google account only). Now I have a sign out link in my page, which on clicking, I want the user to be logged out of google accounts and the page to be redirected to my home page. can this be done ??

Edit-
Changing the accepted answer because now Google allows redirecting [continuing] to any domain you want.

Brodsky answered 17/11, 2010 at 6:57 Comment(0)

I have solved this issue calling this function when the user click on the logout link:

var logout = function(){
document.location.href = "https://www.google.com/accounts/Logout?continue=https://appengine.google.com/_ah/logout?continue=http://www.example.com";
}

When the user click on the link, the browser redirect the user to the logout page and only when the logout is complete, the user is redirected to the site "http://www.example.com".

I hope this can help.

Fish answered 12/2, 2013 at 11:21 Comment(7)

OK, do you mean Google is now letting you "continue" into any domain? – Brodsky 1/3, 2013 at 9:8

I didn't try if it is possible to continue into ANY domain. I only tried with the domain from which the request was sent. – Fish 3/3, 2013 at 13:38

@Shrinath: Yes, now google allows. So, this ans is the perfect way :-) – Pleuro 11/3, 2013 at 0:15

Using appengine.google.com as a middle man when doing the redirect back to your application works right now, but I cannot find any documentation for this endpoint. Use with caution. – Nottingham 19/11, 2013 at 13:12

Unfortunately, when using this URL with Google Chrome, and with a user logged in to Google Chrome, this also logs the user out of their chrome session - pausing the data sync. Not a good idea.... – Boutique 12/9, 2018 at 18:42

This is not working any more. It is intended behavior, please check this case for answer – Diantha 25/4, 2019 at 15:46

how to avoid redirect notice page? – Benedict 23/1, 2023 at 6:57

Challenges

Requesting https://www.google.com/accounts/Logout will log the user out. There is a continueUrl parameter that Google adds to that address sometimes, but it will only succeed to redirect the user when the target is some Google site, and not your own. This makes the approach unusable.

Furthermore the OpenID specification does not include global log out at this moment.

There is another way:

Suggestion

Include an IFrame on your page and use the onClick JavaScript event handler on the logout link to load https://www.google.com/accounts/Logout into the IFrame. After that (you might want to check whether the IFrame loaded succesfully), redirect the user to a logout procedure for your own site. After logging out let that page redirect to your home page.

The link might look a bit like this:

<a href="https://www.google.com/accounts/Logout"
    onclick="myIFrame.location='https://www.google.com/accounts/Logout';StartPollingForCompletion();return false;">
   log out</a>
<iframe id="myIFrame"></iframe>

You need to implement the StartPollingForCompletion() function to periodically check whether the logout page has loaded. use setTimeout() to time the poll, and check for some property on the IFrame (I don't know for sure which ones will work, because you're working cross-site here).

see also these questions:

OpenID. How do you logout

How to add logout feature to an OpenID enabled site?

Oh answered 17/11, 2010 at 7:26 Comment(4)

I am thinking of something like this : <a href="google.com/accounts/Logout" target = "myframe">logout</a> <iframe name="myframe" style="display:none"></iframe> – Brodsky 17/11, 2010 at 8:57

Lol :D I had seen that stackoverflow's thread before.. I didn't get a proper answer there, and it was old, so opened a new one hoping to get an answer atleast after an year :D – Brodsky 18/11, 2010 at 4:45

btw, how do you suggest I implement that "StartPollingForCompletion()" ?? I am currently executing a redirect in javascript after 500ms, but I know that is blind.. – Brodsky 18/11, 2010 at 4:46

Checking anything relative to the state of such an iframe is likely to fail due to CORS (XSS) restrictions. – Culm 20/5, 2015 at 20:55

As I've spent a huge amount of time on this google login/logout issue for my app (which is a Node/MongoDB server, using massively Google Docs and Google Script APIs), I had to share my results here..

The only good way to completely logout the user is to use this :

 var newWindow = window.open('https://mail.google.com/mail/?logout&hl=fr','Disconnect from Google','width=100,height=50,menubar=no,status=no,location=no,toolbar=no,scrollbars=no,top=200,left=200');
setTimeout(function(){
    if (newWindow) newWindow.close();
    window.location="auth/google";
},3000);

If you use the solution gave above by ira, it is doing a partial logout it seems for the current tab of the browser. Meaning that if the user close the tab, and reopen the application, he will be still logged to the previous account.

I had to use an external window because I was not able to redirect correctly to my app after logout from email google account. This solution works most of times, if user bandwidth is not too slow, letting 3 seconds to the logout being done before closing the popup. Then user is required to log with another account in my main window app.

This confirms the solution of floccinaucinihilipilification and maybe the iframe solution given above should be better than mine.

Ai answered 27/6, 2015 at 21:46 Comment(1)

Elegant solution here - working nicely. Seems to be "cleaner & lighter" than having to manage an iframe and all the stuff that goes with that – Quintonquintuple 27/6, 2018 at 20:46

I have been trying to do the same. For google apps only -
To logout try the following two options:
1) Using i-frame -

<iframe src="https://mail.google.com/a/YOURDOMAIN.IN/?logout&hl=en" width="100%" height="300">
  <p>Your browser does not support iframes.</p>
</iframe>

2) Using Javascript -

<script type="text/javascript">
     window.open('https://mail.google.com/a/YOURDOMAIN.IN/?logout&hl=en','logout_from_google','width=600,height=300,menubar=no,status=no,location=no,toolbar=no,scrollbars=no,top=20,left=20');
</script>

Bolme answered 14/2, 2011 at 10:17 Comment(2)

sorry dude, this thread is answered long back, and he had suggested the iframe method which I used on that project... Thanks for your valuable time :) – Brodsky 14/2, 2011 at 12:18

Hi. Could u tell me how u did this ? What I want to do is send a hidden request to log out the user from google acccount and then take him to any php page I want. Please help ! – Bolme 15/2, 2011 at 8:33

Here's what I do, don't recall if I made it up or found it somewhere... It works like a charm... other than the fact that it logs out you out of all Google sites (I can't believe they don't provide a proper way to do it, but there you go.)

<script>
function makeFrame(domId,url) { 
    ifrm = document.createElement("IFRAME"); 
    ifrm.setAttribute("src", url);
    ifrm.setAttribute("id", domId);
    ifrm.setAttribute("style", "display:none;");         
    ifrm.style.width = 1+"px"; 
    ifrm.style.height = 1+"px"; 
    document.body.appendChild(ifrm); 
} 

function logOutGoogle(){
    makeFrame('googleLogoutIFrame','https://www.google.com/accounts/Logout');
}
$(window).ready(function() {
    logOutGoogle();
});
</script>

Onassis answered 5/1, 2016 at 4:2 Comment(1)

It worked perfectly with my requirement i want to programmatically call logout without knowing user or any kind of popup. Your solution worked for me. One thing i want to add after document.body.appendChild(ifrm) we can add const nodes = document.querySelectorAll('iframe'); nodes.forEach((node) => node.parentNode.removeChild(node)); to remove iframes which are not useful. – Cobalt 11/1, 2022 at 16:47

I use this code to log out from google account. It will throw an error but don't worry, it will be redirected immediately after the error takes place directly to your application server-side signout route.

<a href="https://www.google.com/accounts/Logout" target="myiframe">logout</a>
<iframe name="myiframe" style="display:none" onload="redirect()"></iframe>

<script>
  function redirect() {
    window.location = 'http://your.site.com/signout';
  };
</script>

Longo answered 30/3, 2019 at 16:10 Comment(0)

I just had to do the same, logout the user. somehow the accepted answer doesn't work for me, I got an error from google

The page you requested is invalid.

so I ended up putting this into my page:

<img src="https://www.google.com/accounts/Logout" />

which successfully logs out the user. source

Eisk answered 31/3, 2014 at 13:1 Comment(0)

I don't know if the thing I did was right. But I managed to use code like this:

<a class="btn btn-default navbar-btn text-white" id="signOut" href="../home.html" onclick="signOut('https://www.google.com/accounts/Logout');">Sign out</a>
    <script>
      function signOut() {
        var auth2 = gapi.auth2.getAuthInstance();
        auth2.signOut().then(function () {
          console.log('User signed out.');
        });
      }
      firebase.auth().signOut().then(function() {
        // Sign-out successful.
        alert('You have Signed Out. Please Sign In');
      }).catch(function(error) {
        // An error happened.
        alert('An error happened');
      });
    </script>

Fatsoluble answered 14/9, 2018 at 11:0 Comment(1)

Does it continue to the home.html after an error happens or does it stay there? – Brodsky 17/9, 2018 at 16:28

Hot tags

Godot Unity Godot Help Programming Godot 4.X GUI GDScript 3D 2D Physics CSharp Godot 3.X VR XR Projects C++

Recommended topics

Hot tags