logout invalidation does not work for existing client application

[vvdevteam]

There's a repo for client app integration with this solution that you've provided. However, if you already have an existing client app (e.g., ASP.NET) that doesn't utilize Amplify, you may encounter a situation where, upon logging out, you are redirected to the landing page without actually being logged out.

To address this, we've implemented a logout endpoint that serves as a proxy to the Cognito logout endpoint. However, this solution doesn't fully resolve the issue, as the token swap mechanism may still issue a new token when logging in.