Scott, It seems that I offended you. It was not my intent. It is obvious that CAS is a great product, even if it is a nightmare to understand and configure. I thought I had finally understood it and was trying to summarize for those that only know English and Java, and are beginners at CAS. As a matter of fact, half of what I summarized was my understanding of your previous answers. Obviously I didn't understand as well as I thought.
The thing that confuses me the most is when you say that CAS can be configured to call back the Spring Security /j_spring_security_logout URL. Of course I'd rather do that!!! >From all the information available (including what you gave me) it looked like >CAS couldn't, and that at best it could only go back to the URL accessed when >CAS redirected to the login page. I trust you on 'faith' that it is possible >to configure CAS through Spring Security so that it calls the >j_spring_security_logout URL of the client app during a CAS logout, but even >though it sounds like a trivial thing, I've seen no sign of how to do so >anywhere in the docs nor the internet. All the posts out there are either of >somebody who tried and failed, or of some crazy hack to get around it. If it >can really be done, that would be the Holy Grail... please show me an example >of such a configuration done in a Spring Security >applicationContext-security.xml. b. ________________________________ From: Scott Battaglia [mailto:[email protected]] Sent: Wednesday, February 18, 2009 9:36 AM To: [email protected] Subject: Re: [cas-user] Spring Security & CAS logout -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user
