Ramanujam, If you were creating cookies for login.test.com and then switched to test.com, it makes sense why none of your efforts work. You were making the cookies in-memory rather than written to disk, so they will only go away if the browser is closed or you expire them manually, however since you changed subdomains CAS is no longer able to issue cookies for login.test.com.
Changing the domain for the CASTGC at run time seems extreme if necessary at all. The sanest recommendation is to perform this in off hours (middle of the night) to limit repercussions and let users suck up logging in again. Best you are going to get; sorry A- On 9/7/09 6:14 AM, "Ramanujam M." <[email protected]> wrote: > Hi Guys, > > I have some problem in deleing the old cookies created by CAS server. > Initially we are creating a cookies, when the logs into the system through CAS > server (say our domain is login.test.com), later on we changed the > configuration such that cookies will created for the domain (test.com). This > has causing some issues for the user has already had our previous cookies, > they are not able to auto login. For this we have tried to set the MaxAge of > the cookies to 0 or -1, both doesn¹t help us to delete the previous cookies. > Can you guys please thrown some light on this issue. > > We cannot ask the users to delete the cookies, and login again. So planned to > have delete login and on the login page. > > Thanks > Ramanujam -- Andrew Feller, Business System Programmer LSU University Information Services 200 Frey Computing Services Center Baton Rouge, LA 70803 Office: 225.578.3737 Fax: 225.578.6400 -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user
