I followed http://shiro.apache.org/cas.html to integrate Shiro 1.2.1 with CAS server 3.5.1. The single sign out appears to work - when a user refreshes a page after logout in CAS server, he is redirected to CAS login page. But there is exception when CAS server post the sign out callback to Shiro.
from Tomcat access log 192.168.129.118 - - [26/Nov/2012:10:16:49 +0800] "POST /shiro-cas HTTP/1.1" 500 4090 from application log 10:16:49 [org.apache.shiro.realm.AuthenticatingRealm] [DEBUG] Looked up AuthenticationInfo [null] from doGetAuthenticationInfo 10:16:49 [org.apache.shiro.realm.AuthenticatingRealm] [DEBUG] No AuthenticationInfo found for submitted AuthenticationToken [org.apache.shiro.cas.CasToken@1e8809ce]. Returning null. 10:16:49 [org.apache.shiro.web.servlet.SimpleCookie] [DEBUG] Added HttpServletResponse Cookie [rememberMe=deleteMe; Path=/; Max-Age=0; Expires=Sun, 25-Nov-2012 02:16:49 GMT] 10:16:49 [org.apache.shiro.web.servlet.AdviceFilter] [DEBUG] Filter execution resulted in an unexpected Exception (not IOException or ServletException as the Filter API recommends). Wrapping in ServletException and propagating. -- View this message in context: http://shiro-user.582556.n2.nabble.com/CAS-single-sign-out-exception-tp7577991.html Sent from the Shiro User mailing list archive at Nabble.com.
