Dec 5th, 2012, 10:40 PM
CAS SSO Logout using spring security
i am a newbie to Spring Security and CAS. I am implementing SSO using CAS integrated with spring security. I need help in implementing CAS logout which which invalidate the session,ST generated both in the application and CAS and redirects to the CAS login page.
These are my config i have done referring to various websites but still struggling
Changes in CAS -
<bean id="logoutController" class="org.jasig.cas.web.LogoutController"
<!-- other reqd props ->
I want to know what must be the URL i need to configure in the logoutFilter . As of now i have configured the CAS logout URL. But the issue is the page is just redirected to the url configured , but neither the CAS nor the application is logged out. Below is the bean config
<bean id="logoutFilter" class="org.springframework.security.web.authentica tion.logout.LogoutFilter">
<!-- URL redirected to after logout success -->
<constructor-arg value="https://CAS-server URL:8443/cas-server-webapp-3.5.1/j_spring_security_logout"/>
<bean class="org.springframework.security.web.authentica tion.logout.SecurityContextLogoutHandler"/>
<bean class="com.infosys.iengage.sso.logout.CustomLogout Handler"/>
I have implemented a CustomLogoutHandler which redirects the user to the https://CAS-server URL:8443/cas-server-webapp-3.5.1/j_spring_security_logout.
Can you please help me understanding and resolving this?
Dec 7th, 2012, 03:58 PM