Single Logout Out throws error - Unable to get SsoTokenManager / Unknown JWT

I am trying to logout after 7 minutes of inactivity from our Application using Spring Boot - to ForgeRock OIDC logout with URL:


Issue: Getting different errors at different points:
1 - {“error_description”:“Unable to get SsoTokenManager”,“error”:“server_error”}
2- { “error_description”: “Unknown JWT”, “error”: “bad_request”}

I am suspecting the issue to be ForgeRock session has already timeout, i.e.
our application timeout > forgerock session timeout


Endpoint to terminate authenticated end-user sessions, as per OpenID Connect Session Management 1.0 - draft 5.

Please help with what configurations / where to check?

Hi Pdaga,

The error messages and the behavior you describe are the same/similar as
(OPENAM-15433) - Make the endSession endpoint continue flow when presented with valid id_token but expired session, which was fixed in AM 6.5.3 and

Can you kindly confirm your AM version and deployment type?