We use the JA-SIG CAS client without Spring security and we haven¹t had any issues with the SSOut. Can you copy the web.xml from an application of yours that isn¹t handling SSOut correctly?
On 1/12/09 5:40 PM, "Leena Borle" <[email protected]> wrote: > Hi, > In my case, it only invalidates the session of the application which > initiated the /cas/logout. Other applications still keeps the same session. > Difference between these applications is only that the mail application that > calls logout has implemented CAS with Spring security and others have it in > configured in web.xml (CAS-client 3.1.3) > I'm wondering if anything is missing in my configurarion. CAS > documentation says SSO requires just addition of SSO filter in web.xml. > Leena > > On Mon, Jan 12, 2009 at 1:27 PM, Andrew Feller <[email protected]> wrote: >> Leena, >> >> No. When the user goes to the CAS server to logout, the CAS server will >> notify all the applications that requested service tickets and invalidate the >> user's sessions. >> >> A- >> >> >> >> On 1/12/09 2:53 PM, "Leena Borle" <[email protected]> wrote: >> >>> Hello, >>> I have added SSO filter in all web.xml of my application. I want to >>> initiate sign-out from only one application. Do I need to invalidate >>> sessions in other applications individually before calling /cas/logout? >>> Leena >>> >>> >>> _______________________________________________ >>> Yale CAS mailing list >>> [email protected] >>> http://tp.its.yale.edu/mailman/listinfo/cas > > -- > Andrew Feller, Analyst > LSU University Information Services > 200 Frey Computing Services Center > Baton Rouge, LA 70803 > Office: 225.578.3737 > Fax: 225.578.6400
_______________________________________________ Yale CAS mailing list [email protected] http://tp.its.yale.edu/mailman/listinfo/cas
