Hi @Hector Meneses @ BMG , another possible solution is to modify the logout URL to use the front-channel logout endpoint instead of the back-channel logout endpoint. The front-channel logout endpoint is designed to be used in an iframe and should not trigger a CSP violation. To use the front-channel logout endpoint, you can modify the logout URL to include the &x-client-SKU=MSAL.JS
query parameter, like this:
https://{tenant}.b2clogin.com/{tenant}.onmicrosoft.com/{userflow}/oauth2/v2.0/logout?post_logout_redirect_uri={uri}&x-client-SKU=MSAL.JS
This should allow you to log out without encountering the CSP violation error in Firefox. Please let me know if you have any questions and I can help you further. If this answer helps you please mark "Accept Answer" so other users can reference it.
Thank you,
James