Home

signedOut

Signedout is a term used in computing to describe the state of a user who does not have an active authenticated session in a system. The phrase is commonly encountered in user interfaces as an indicator that the user is not currently signed in, and in codebases it may appear as a boolean flag or status variable such as signedOut.

In practice, signed-out status is achieved by performing a sign-out or log-out action. This typically involves

Different architectures handle sign-out in various ways. In token-based systems, sign-out may require revoking tokens and

Security considerations include ensuring complete invalidation of credentials, preventing session fixation, and protecting against cross-site request

See also: sign-in, log out, authentication, session management.

invalidating
authentication
credentials
on
the
server
(for
example,
server-side
sessions
or
tokens)
and
clearing
local
credentials
on
the
client
(such
as
cookies
or
stored
tokens).
After
signing
out,
access
to
personal
data
and
privileged
features
is
restricted
until
the
user
signs
in
again.
Many
applications
immediately
redirect
users
to
a
login
screen
or
home
page
with
a
message
confirming
the
sign-out.
clearing
refresh
tokens
to
prevent
misuse.
In
server-side
session
models,
the
session
identifier
is
destroyed
or
marked
invalid.
Single
sign-on
(SSO)
scenarios
add
complexity
by
signing
out
across
multiple
applications
or
devices,
sometimes
offering
a
global
sign-out
option.
forgery
during
sign-out
requests.
From
the
user
perspective,
signed-out
is
a
normal,
reversible
state,
reflecting
a
preference
for
privacy
or
security
by
terminating
access
to
a
device
or
service.