Hi, When I log out of my application by unsetting my session in my local app, and redirecting to the /logout page where CAS says "thanks for logging out, you should close your browser", nothing really seems to happen with my cookies I find.
When I (in the same browser session) return to my app's login page (which has an iframe to CAS), CAS immediately logs in again as if it were still authorized (I've checked with fiddler, it sends the cookie value again, and it's accepted). My question is: do I have to force the user to close the browser? Or is there some configuration issue somewhere? Or something else I can investigate? Cheers! -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user
