Does your application manage the call from CAS to logout your own session ? By default, CAS call the same url of your application for login and logout (it keeps the service url for the logout signal).
You have to invalidate your application session when CAS tell you to do so. Stéphane 2010/7/1 Bryan Wooten <[email protected]> > Here is my configuration: > > > > CAS server 3.3.5 > > CAS client 3.1.8 > > > > CAS server and Casified application are both accessed through the same > proxy. The CAS server is on one Glassfish instance and the application is on > a separate instance. > > > > My application is configured for single sign out: > > > > <!-- CAS:START - Java Client Single Sign Out Listener --> > > <listener> > > > <listener-class>org.jasig.cas.client.session.SingleSignOutHttpSessionListener</listener-class> > > </listener> > > <!-- CAS:END --> > > <filter> > > <filter-name>CasSingleSignOutFilter</filter-name> > > > <filter-class>org.jasig.cas.client.session.SingleSignOutFilter</filter-class> > > </filter> > > > > I have a link on my page that takes me to the CAS logout, this does not log > me out and the service redirect does not work either. > > https://dev.utah.edu/cas/logout?service=https://go.here > > After the logout I can still access my application without needing to login > in again. > > > > If I open a second tab and go direct to the CAS logout page, this also > fails to log me out. > > > > I see in my proxy access log that a POST was made to my application which I > believe came from the CAS server. > > > > So basically I can’t log out. > > > > Now the other questions. If I set renew=true in > org.jasig.cas.client.validation.Cas20ProxyReceivingTicketValidationFilter > and org.jasig.cas.client.authentication.AuthenticationFilter > > And set useSession=false in Cas20ProxyReceivingTicketValidationFilter > Firefox complains that my application is in an endless redirect loop. If I > remove the renew=true then I can never leave the CAS login in page, the > filters apparently keep sending me back to login. > > > > So the bottom question: How do I get logout to work? > > > > Thanks, > > Bryan Wooten > > > > [email protected] > > Work: 801.585.9323 > > Cell: 801.414.3593 > > > > -- > You are currently subscribed to [email protected] as: > [email protected] > > To unsubscribe, change settings or access archives, see > http://www.ja-sig.org/wiki/display/JSG/cas-user > > -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user
