Yeah I've hit that. So if you log them out in your application that will remove the cookies and they won't show as logged in but the next redirect to Keycloak shows an error.
The documentation sucks for ASP.net and it's far worse for the Safe stack.
You have to understand the stack so you have to read up on the following.
ASP.net
Giraffe
Saturn
Fable remoting
Keycloak
OpenID
Once you have a good understanding of all of those you can start to understand the half a dozen blog posts that attempt something similar.
You can do a logout via redirect though. So you have to call SignOutAsync on the oidc scheme, and then the user will get redirected to a logout page.
Need to enable SaveTokens in session though, because you need the logout token for that.
If you have any issues, please ask and I will post some (short!) code snippets here :)
Ps: I also love f#, but I concluded that it’s not worth using it for asp.net. There are just too many f# specific things you need to figure out first. Just going with c# is the safer bet. But you can still use f# for your service layer and for tests!
The documentation sucks for ASP.net and it's far worse for the Safe stack.
You have to understand the stack so you have to read up on the following.
Once you have a good understanding of all of those you can start to understand the half a dozen blog posts that attempt something similar.