Problem with Logging Out

[timpeihunghsieh]

I noticed that I can log back in to the app right after I logged out. In fact, even if I clear the localhost's cookie or the session table in mongodb, I can still log in without a password right after I logged out.

Does anyone know how to resolve this?

[timpeihunghsieh]

I believe this is working as intended. When a user logs in with Google, user actually signs in with Google. However, when the user logs out of the app, user did not log out of Google. Therefore, when user logs in again, the app will still let the user through. I tried this on other sites that use Sign In with [Google/FB], they all have the same problem. I believe this is the downside of using OAuth.