I have an application implementing Spring Security. In web.xml, I set up HttpSessionEventPublisher listener, and configures session timeout as 5 minutes. When the application times out, how do I invalidate CAS single sign on session to force the user to relogin?
I have tried to create a customized filter, which will redirect the user to cas logout link when the application times out. However, it doesn't work as I expected. Can anyone tell me how to do backend logout of CAS, instead of redirect url to cas logout page? -- View this message in context: http://www.nabble.com/How-to-sign-out-of-CAS-when-spring-security-app-session-timeout--tp24006847p24006847.html Sent from the CAS Users mailing list archive at Nabble.com. -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user
