0 Replies Latest reply on Jun 14, 2010 5:51 PM by Sully Zhang

    how to setup single sign out with CAS

    Sully Zhang Newbie

      Intro:

      --gatein 3.1 and CAS 3 run on the same jboss 5

      --seam project run jboss4(another pc)

      --the single sign on works normal, but single sign out doesn't work.

       

      do you have any suggestion?
      Thanks.

      my Gatein portal 3.1 web.xml:

       

      <filter>
              <filter-name>LoginRedirectFilter</filter-name>
              <filter-class>org.gatein.sso.agent.filter.LoginRedirectFilter</filter-class>
              <init-param>
                  <!-- This should point to your SSO authentication server -->

       

                  <param-name>LOGIN_URL</param-name>
                  <!--
                      If casRenewTicket param value of InitiateLoginServlet is: not
                      specified or false
                  -->
                  <param-value>https://domain:8443/cas/login?service=http://domain:8080/portal/private/classic</param-value>
                  <!--
                      If casRenewTicket param value of InitiateLoginServlet is : true
                  -->
                  <!--
                      <param-value>http://localhost:8888/cas/login?service=http://localhost:8080/portal/private
                      /classic&amp;renew=true</param-value>
                  -->
              </init-param>
          </filter>
          <filter>
              <filter-name>CASLogoutFilter</filter-name>
              <filter-class>org.gatein.sso.agent.filter.CASLogoutFilter</filter-class>

       

              <init-param>
                  <!-- This should point to your JOSSO authentication server -->
                  <param-name>LOGOUT_URL</param-name>
                  <param-value>https://domain:8443/cas/logout</param-value>
              </init-param>
          </filter>

       

       

      <filter-mapping>
              <filter-name>LoginRedirectFilter</filter-name>
              <url-pattern>/*</url-pattern>
          </filter-mapping>
          <filter-mapping>
              <filter-name>CASLogoutFilter</filter-name>
              <url-pattern>/*</url-pattern>
          </filter-mapping>

       

      <servlet>
              <servlet-name>InitiateLoginServlet</servlet-name>
              <servlet-class>org.gatein.sso.agent.GenericSSOAgent</servlet-class>
              <init-param>
                  <param-name>ssoServerUrl</param-name>
                  <param-value>https://domain:8443/cas</param-value>
              </init-param>
              <init-param>
                  <param-name>casRenewTicket</param-name>
                  <param-value>false</param-value>
              </init-param>
          </servlet>

       

      even though i add the section :

       

      <!-- CAS SINGLE SIGN OUT FILTER -->
          <filter>
              <filter-name>CAS Single Sign Out Filter</filter-name>
              <filter-class>
                  org.jasig.cas.client.session.SingleSignOutFilter
              </filter-class>
          </filter>
         
          <filter-mapping>
              <filter-name>CAS Single Sign Out Filter</filter-name>
              <url-pattern>/*</url-pattern>
          </filter-mapping>

      <!-- SingleSignOutHttpSessionListener LISTENER -->
          <listener>
              <listener-class>
                  org.jasig.cas.client.session.SingleSignOutHttpSessionListener
              </listener-class>
          </listener>