support optional GET parameters for end_session_endpoint

bmauser · bmauser · commit e97762a02ee6 · 2025-11-06T20:13:29.000+01:00
diff --git a/src/OpenIDConnectClient.php b/src/OpenIDConnectClient.php
@@ -427,12 +427,13 @@ public function authenticate(): bool
      *
      * @param string $idToken ID token (obtained at login)
      * @param string|null $redirect URL to which the RP is requesting that the End-User's User Agent
+     * @param array $params Optional GET parameters to end-session endpoint
      * be redirected after a logout has been performed. The value MUST have been previously
      * registered with the OP. Value can be null.
      *
      * @throws OpenIDConnectClientException
      */
-    public function signOut(string $idToken, $redirect) {
+    public function signOut(string $idToken, $redirect, array $params = []) {
         $sign_out_endpoint = $this->getProviderConfigValue('end_session_endpoint');
 
         if($redirect === null){
@@ -444,6 +445,9 @@ public function signOut(string $idToken, $redirect) {
                 'post_logout_redirect_uri' => $redirect];
         }
 
+        if($params)
+            $signout_params = array_merge($signout_params, $params);
+
         $sign_out_endpoint  .= (strpos($sign_out_endpoint, '?') === false ? '?' : '&') . http_build_query( $signout_params, '', '&', $this->encType);
         $this->redirect($sign_out_endpoint);
     }

Original file line number	Diff line number	Diff line change
`@@ -427,12 +427,13 @@ public function authenticate(): bool`
`427`	`427`	`*`
`428`	`428`	`* @param string $idToken ID token (obtained at login)`
`429`	`429`	`* @param string\|null $redirect URL to which the RP is requesting that the End-User's User Agent`
	`430`	`+ * @param array $params Optional GET parameters to end-session endpoint`
`430`	`431`	`* be redirected after a logout has been performed. The value MUST have been previously`
`431`	`432`	`* registered with the OP. Value can be null.`
`432`	`433`	`*`
`433`	`434`	`* @throws OpenIDConnectClientException`
`434`	`435`	`*/`
`435`		`- public function signOut(string $idToken, $redirect) {`
	`436`	`+ public function signOut(string $idToken, $redirect, array $params = []) {`
`436`	`437`	`$sign_out_endpoint = $this->getProviderConfigValue('end_session_endpoint');`
`437`	`438`
`438`	`439`	`if($redirect === null){`
`@@ -444,6 +445,9 @@ public function signOut(string $idToken, $redirect) {`
`444`	`445`	`'post_logout_redirect_uri' => $redirect];`
`445`	`446`	`}`
`446`	`447`
	`448`	`+ if($params)`
	`449`	`+ $signout_params = array_merge($signout_params, $params);`
	`450`	`+`
`447`	`451`	`$sign_out_endpoint .= (strpos($sign_out_endpoint, '?') === false ? '?' : '&') . http_build_query( $signout_params, '', '&', $this->encType);`
`448`	`452`	`$this->redirect($sign_out_endpoint);`
`449`	`453`	`}`