When the user is filtered out by oidc.groups.allowed and is not allowed to access XWiki it will still be logged in on the provider. It would be interesting to introduce an option to force login out logout of the provider in such a case.
This message was sent by Atlassian Jira (v9.3.0#930000-sha1:287aeb6)
If image attachments aren't displayed, see this article.
