Logout doesn't work in Seafile with keycloak integration

pierinhood · January 27, 2026, 10:49am

Good morning, everyone.

I configured Keycloak and integrated Seafile into Keycloak for SSO access, following the guide on this forum.

My seahub_settings.py:

ENABLE_OAUTH = True
OAUTH_CREATE_UNKNOWN_USER = True
OAUTH_ACTIVATE_USER_AFTER_CREATION = True
OAUTH_CLIENT_ID = "XXXXX"
OAUTH_CLIENT_SECRET = "XXXXX"
OAUTH_REDIRECT_URL = "https://seafile.url/oauth/callback"

OAUTH_PROVIDER_DOMAIN = 'seafile.url'
OAUTH_AUTHORIZATION_URL = 'https://keycloak.url/realms/MyRealm/protocol/openid-connect/auth'
OAUTH_TOKEN_URL = 'https://keycloak.url/realms/MyRealm/protocol/openid-connect/token'
OAUTH_USER_INFO_URL = 'https://keycloak.url/realms/MyRealm/protocol/openid-connect/userinfo'
OAUTH_SCOPE = ["openid", "profile", "email"]
OAUTH_ATTRIBUTE_MAP = {
    "sub": (True, "uid"),
    "email": (False, "contact_email"),
    "name": (False, "name")
}
LOGIN_URL = 'https://seafile.url/oauth/login/'
CLIENT_SSO_VIA_LOCAL_BROWSER = True

Login works, but when I log out of Seafile, the session is not actually deleted. It remains on Keycloak, so when I reload the Seafile page, I am already logged in.

Can you please help me fix this? I would like to delete the session when I log out. Thank you

daniel.pan · January 28, 2026, 3:32am

You can add configuration LOGOUT_REDIRECT_URL in seahub_settings.py for single logout when user login via SSO.

See seahub_settings.py - Seafile Admin Manual