how to setup single sign out with CAS
yelan_gatein Jun 14, 2010 5:51 PMIntro:
--gatein 3.1 and CAS 3 run on the same jboss 5
--seam project run jboss4(another pc)
--the single sign on works normal, but single sign out doesn't work.
do you have any suggestion?
Thanks.
my Gatein portal 3.1 web.xml:
<filter>
<filter-name>LoginRedirectFilter</filter-name>
<filter-class>org.gatein.sso.agent.filter.LoginRedirectFilter</filter-class>
<init-param>
<!-- This should point to your SSO authentication server -->
<param-name>LOGIN_URL</param-name>
<!--
If casRenewTicket param value of InitiateLoginServlet is: not
specified or false
-->
<param-value>https://domain:8443/cas/login?service=http://domain:8080/portal/private/classic</param-value>
<!--
If casRenewTicket param value of InitiateLoginServlet is : true
-->
<!--
<param-value>http://localhost:8888/cas/login?service=http://localhost:8080/portal/private
/classic&renew=true</param-value>
-->
</init-param>
</filter>
<filter>
<filter-name>CASLogoutFilter</filter-name>
<filter-class>org.gatein.sso.agent.filter.CASLogoutFilter</filter-class>
<init-param>
<!-- This should point to your JOSSO authentication server -->
<param-name>LOGOUT_URL</param-name>
<param-value>https://domain:8443/cas/logout</param-value>
</init-param>
</filter>
<filter-mapping>
<filter-name>LoginRedirectFilter</filter-name>
<url-pattern>/*</url-pattern>
</filter-mapping>
<filter-mapping>
<filter-name>CASLogoutFilter</filter-name>
<url-pattern>/*</url-pattern>
</filter-mapping>
<servlet>
<servlet-name>InitiateLoginServlet</servlet-name>
<servlet-class>org.gatein.sso.agent.GenericSSOAgent</servlet-class>
<init-param>
<param-name>ssoServerUrl</param-name>
<param-value>https://domain:8443/cas</param-value>
</init-param>
<init-param>
<param-name>casRenewTicket</param-name>
<param-value>false</param-value>
</init-param>
</servlet>
even though i add the section :
<!-- CAS SINGLE SIGN OUT FILTER -->
<filter>
<filter-name>CAS Single Sign Out Filter</filter-name>
<filter-class>
org.jasig.cas.client.session.SingleSignOutFilter
</filter-class>
</filter>
<filter-mapping>
<filter-name>CAS Single Sign Out Filter</filter-name>
<url-pattern>/*</url-pattern>
</filter-mapping>
<!-- SingleSignOutHttpSessionListener LISTENER -->
<listener>
<listener-class>
org.jasig.cas.client.session.SingleSignOutHttpSessionListener
</listener-class>
</listener>