From dca515efb1a1180a41889ffd5b0879da95d72286 Mon Sep 17 00:00:00 2001
From: Ethan Palm <56270045+ethanpalm@users.noreply.github.com>
Date: Tue, 27 Jan 2026 14:04:44 -0800
Subject: [PATCH 1/2] Update deploy/authentication-setup.mdx

Co-Authored-By: mintlify[bot] <109931778+mintlify[bot]@users.noreply.github.com>
---
 deploy/authentication-setup.mdx | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/deploy/authentication-setup.mdx b/deploy/authentication-setup.mdx
index 21c60993d..7344e1833 100644
--- a/deploy/authentication-setup.mdx
+++ b/deploy/authentication-setup.mdx
@@ -101,7 +101,7 @@ Your host your documentation at `docs.foo.com` and your entire team has access t
       * **Additional authorization parameters** (optional): Additional query parameters to add to the initial authorization request.
       * **Token URL**: Your OAuth token exchange endpoint.
       * **Info API URL** (optional): Endpoint on your server that Mintlify calls to retrieve user info. Required for group-based access control. If omitted, the OAuth flow only verifies identity.
-      * **Logout URL** (optional): The native logout URL for your OAuth provider. Mintlify redirects users to this URL with a `GET` request when they log out. Mintlify does not append query parameters, so include any parameters (for example, `returnTo`) directly in the URL. Configure a page to redirect users to on a successful logout.
+      * **Logout URL** (optional): The native logout URL for your OAuth provider. When users log out, Mintlify validates the logout redirect against this configured URL for security. The redirect only succeeds if it exactly matches the configured `logoutUrl`—otherwise, users are redirected to `/login`. Mintlify redirects users with a `GET` request and does not append query parameters, so include any parameters (for example, `returnTo`) directly in the URL.
       * **Redirect URL** (optional): The URL to redirect users to after authentication.
     5. Click **Save changes**.
 

From 9218d2f870ba75153bc4c2dd2871373ed55cad6c Mon Sep 17 00:00:00 2001
From: Ethan Palm <56270045+ethanpalm@users.noreply.github.com>
Date: Tue, 27 Jan 2026 14:10:24 -0800
Subject: [PATCH 2/2] Apply suggestion from @ethanpalm

---
 deploy/authentication-setup.mdx | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/deploy/authentication-setup.mdx b/deploy/authentication-setup.mdx
index 7344e1833..daadbeaa2 100644
--- a/deploy/authentication-setup.mdx
+++ b/deploy/authentication-setup.mdx
@@ -101,7 +101,7 @@ Your host your documentation at `docs.foo.com` and your entire team has access t
       * **Additional authorization parameters** (optional): Additional query parameters to add to the initial authorization request.
       * **Token URL**: Your OAuth token exchange endpoint.
       * **Info API URL** (optional): Endpoint on your server that Mintlify calls to retrieve user info. Required for group-based access control. If omitted, the OAuth flow only verifies identity.
-      * **Logout URL** (optional): The native logout URL for your OAuth provider. When users log out, Mintlify validates the logout redirect against this configured URL for security. The redirect only succeeds if it exactly matches the configured `logoutUrl`—otherwise, users are redirected to `/login`. Mintlify redirects users with a `GET` request and does not append query parameters, so include any parameters (for example, `returnTo`) directly in the URL.
+      * **Logout URL** (optional): The native logout URL for your OAuth provider. When users log out, Mintlify validates the logout redirect against this configured URL for security. The redirect only succeeds if it exactly matches the configured `logoutUrl`. If you do not configure a logout URL, users redirect to `/login`. Mintlify redirects users with a `GET` request and does not append query parameters, so include any parameters (for example, `returnTo`) directly in the URL.
       * **Redirect URL** (optional): The URL to redirect users to after authentication.
     5. Click **Save changes**.