# SSO session logout

Use the SSO Session Logout API endpoint to log the user out from specific sessions. When the client application sends a request to Mosaic’s `/ido/api/v2/auth/sso-logout` endpoint, it must include both the `clientId` and `ssoSessionId` parameters to target the specific session for logout.

### Details

- Endpoint: `/ido/api/v2/auth/sso-logout`
- Method: `POST`
- Token: Not required


#### Parameters

div
| Parameter | Description |
|  --- | --- |
| **`clientId`** (mandatory) | The ID of the client initiating the logout request. The system logs the user out of the session associated with this client. |
| **`ssoSessionId`** (mandatory) | The session ID of the session to be removed. This value can be extracted from the ID token (from the `ido_sso_session_id` custom claim) during authentication. |


#### Example

Below is an example of how to log out a specific session using the `ssoSessionId` parameter:


```bash
curl -i -X POST \
  "https://api.transmitsecurity.io/ido/api/v2/auth/sso-logout?clientId=[CLIENT_ID]&ssoSessionId=[SSO_SESSION_ID]" \
  -H "Content-Type: application/json"
```