Francisco, destroying the session in the web container works fine for Java client's apps;
but for a specific app (iNotes WebMail), i did have to manually erase the client's cookies. After reading whit more attention the CAS doc page<https://wiki.jasig.org/display/CASUM/Single+Sign+Out>I've found this: Where Single Sign Out Doesn't Work: - Clients / Languages whose only session management consists of cookies. CAS does not have access to the browser's cookies and cannot therefore terminate a session. (however, closing a browser window should do that) Thank you! On Monday, January 28, 2013 11:44:57 AM UTC-2, Jérôme LELEU wrote: > > Hi, > > You're right, destroying the session in the web container is enough > (that's why the client SLO filter + the regular CAS SLO work), even if the > session cookie is not destroyed. > > Though, I think the initial request was more about destroying some client > cookies (not just the session cookie) at the application logout. > > Best regards, > Jérôme > > -- > You are currently subscribed to [email protected] <javascript:> as: > [email protected] <javascript:> > To unsubscribe, change settings or access archives, see > http://www.ja-sig.org/wiki/display/JSG/cas-user > -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user
