Revert "Fix Azure AD SSO logout to terminate IdP session (#26327)" (#27055)

This reverts commit 765f854.

(cherry picked from commit c471dfc)

Author: chirag-madlani

openmetadata-ui/src/main/resources/ui/src/components/Auth/AppAuthenticators/MsalAuthenticator.test.tsx

@@ -36,7 +36,6 @@ jest.mock('../../../utils/AuthProvider.util', () => ({
 const mockInstance = {
   loginPopup: jest.fn(),
   loginRedirect: jest.fn(),
-  logoutRedirect: jest.fn(),
   handleRedirectPromise: jest.fn(),
   ssoSilent: jest.fn(),
   logout: jest.fn(),
@@ -126,33 +125,7 @@ describe('MsalAuthenticator', () => {
     expect(mockInstance.loginRedirect).toHaveBeenCalledWith(msalLoginRequest);
   });
 
-  it('should handle logout by calling logoutRedirect to terminate IdP session', async () => {
-    mockInstance.logoutRedirect.mockResolvedValueOnce(undefined);
-
-    render(
-      <MsalAuthenticator
-        {...mockProps}
-        ref={(ref) => (authenticatorRef = ref)}
-      />
-    );
-
-    await act(async () => {
-      authenticatorRef?.invokeLogout();
-    });
-
-    expect(mockHandleSuccessfulLogout).toHaveBeenCalled();
-    expect(mockInstance.logoutRedirect).toHaveBeenCalledWith(
-      expect.objectContaining({
-        postLogoutRedirectUri: expect.stringContaining('/signin'),
-      })
-    );
-  });
-
-  it('should fallback to local cleanup when logoutRedirect fails', async () => {
-    mockInstance.logoutRedirect.mockRejectedValueOnce(
-      new Error('logout failed')
-    );
-
+  it('should handle logout', async () => {
     render(
       <MsalAuthenticator
         {...mockProps}
@@ -164,7 +137,6 @@ describe('MsalAuthenticator', () => {
       authenticatorRef?.invokeLogout();
     });
 
-    expect(mockInstance.logoutRedirect).toHaveBeenCalled();
     expect(mockHandleSuccessfulLogout).toHaveBeenCalled();
   });
 

openmetadata-ui/src/main/resources/ui/src/components/Auth/AppAuthenticators/MsalAuthenticator.tsx

@@ -23,7 +23,6 @@ import {
   useEffect,
   useImperativeHandle,
 } from 'react';
-import { ROUTES } from '../../../constants/constants';
 import {
   msalLoginRequest,
   parseMSALResponse,
@@ -50,7 +49,7 @@ const MsalAuthenticator = forwardRef<AuthenticatorRef, Props>(
 
     const login = async () => {
       try {
-        const isInIframe = globalThis.self !== window.top;
+        const isInIframe = window.self !== window.top;
 
         if (isInIframe) {
           // Use popup login when in iframe to avoid redirect issues
@@ -69,14 +68,14 @@ const MsalAuthenticator = forwardRef<AuthenticatorRef, Props>(
 
     const logout = async () => {
       try {
+        for (const key in localStorage) {
+          if (key.includes('-login.windows.net-') || key.startsWith('msal.')) {
+            localStorage.removeItem(key);
+          }
+        }
+      } finally {
+        // Cleanup application state
         handleSuccessfulLogout();
-        await instance.logoutRedirect({
-          account: account ?? accounts[0],
-          logoutHint: (account ?? accounts[0])?.username,
-          postLogoutRedirectUri: globalThis.location.origin + ROUTES.SIGNIN,
-        });
-      } catch {
-        // logoutRedirect failed; app state already cleaned up above
       }
     };
 

openmetadata-ui/src/main/resources/ui/src/utils/AuthProvider.util.ts

@@ -204,7 +204,7 @@ export const getAuthConfig = (
           authority,
           clientId,
           redirectUri,
-          postLogoutRedirectUri: globalThis.location.origin + ROUTES.SIGNIN,
+          postLogoutRedirectUri: '/',
         },
         cache: {
           cacheLocation: BrowserCacheLocation.LocalStorage,