Thanks for the repsonse, Julien. Yes - I'm using Moodle's built-in CAS authentication module for Single Sign On and its been very simple to use, but I hadn't seen it support Single Sign Out.
By changing a few lines, I was able to get the latest phpCAS to correct accept "logout" requests for Single Sign Out, and in my debug logfile I see : E038 .| Ticket to logout: ST-48-L5iSMUNpjK9ZBiRYxfKA-cas E038 .| Session id: ST48L5iSMUNpjK9ZBiRYxfKAcas E038 .| exit() So it looks like my CAS server is correctly sending its logout callback to my Moodle instance, and phpCAS in Moodle is handling the request correctly. Unfortunately, my visitor's session is still active, so while my visitor is signed out of CAS, they are not signed out of Moodle. Has anyone found a way of expiring a visitor's Moodle sesssion when CAS sends the logout callback? Do I need to put something in my header.php page that checks for a valid service ticket in the user's session? Thanks, -Brian ________________________________________ From: Julien Gribonvald [[email protected]] Sent: Friday, March 13, 2009 8:36 AM To: [email protected] Subject: Re: [cas-user] single sign out with phpCAS Hi, Moodle is already implemented with CAS ;) - Julien Pieslak, Brian a écrit : > Thank you very much for the example, Rhian. > > After a bit of further investigation I found that I was not using the > latest phpCAS client, so I have downloaded the latest from here: > http://www.ja-sig.org/wiki/display/CASC/phpCAS+installation+guide and > I now see the API for "handleLogoutRequests". > > I'm specifically working with Moodle and WordPress, so I'll see how > their authentication plugins can be used to check for logout requests. > > If anyone has already implemented Single Sign Out with phpCAS > specifically using Moodle or WordPress, that would be a huge help. > > Thanks again. > -Brian > ------------------------------------------------------------------------ > *From:* Rhian Resnick [[email protected]] > *Sent:* Thursday, March 12, 2009 9:26 PM > *To:* [email protected] > *Subject:* RE:[cas-user] single sign out with phpCAS > > We implemented Single Sign Out with phpCAS when we upgraded to CAS > 3.3. We started with the base phpcas distribution + an extension to > support returned attributes. > > > > The biggest gotcha was that we need to publicize the dns entries our > CAS servers would be coming from as the CAS servers are part of a > secure apache cluster. > > > > I attached an example from our E-Academy authentication. > > > > - Rhian > > > > *From:* Pieslak, Brian [mailto:[email protected]] > *Sent:* Thursday, March 12, 2009 8:18 PM > *To:* [email protected] > *Subject:* [cas-user] single sign out with phpCAS > > > > Has anyone successfully implemented single sign out with phpCAS? I > looked through the available documentation online and I didn't see any > explicit instructions or examples for implemented SS Out with phpCas, > so I'm trying to gauge if its worth implemented my own custom solution > or if I should just punt on the idea. > > > > Any recommendations from those who use phpCAS? > > > > Thanks a ton, > > -Brian > > > > -- > > You are currently subscribed to [email protected] as: [email protected] > > To unsubscribe, change settings or access archives, see > http://www.ja-sig.org/wiki/display/JSG/cas-user > > -- > You are currently subscribed to [email protected] as: > [email protected] > To unsubscribe, change settings or access archives, see > http://www.ja-sig.org/wiki/display/JSG/cas-user > > -- > You are currently subscribed to [email protected] as: > [email protected] > To unsubscribe, change settings or access archives, see > http://www.ja-sig.org/wiki/display/JSG/cas-user -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user
