Thanks, I've added the listener and checked de filter-mapping order in the web.xml and now It's all set fine. By the way the troubled app is JForum, which appens to mantain in session the user, so I've had to modify It's logout process and than redirect to CAS logout page. Doing this way I can fully logout without closing the browser. There's still one question I don't understand: Jforum mantains session info about the user ,but if I invalidate cas-session and ticket via CAS Logout page, the resource being protected by Cas Filter (Jforum context in this case) must not be accessible right? Or I'm missing something?
________________________________ Da: jleleu <lel...@gmail.com> A: cas-user@lists.jasig.org Inviato: Martedì 11 Settembre 2012 20:44 Oggetto: re:[cas-user] Logout with CAS\logout needs closing browser window Hi, I think that you also need to add the SingleSignOutHttpSessionListener in your web.xml : https://wiki.jasig.org/display/CASC/Configuring+Single+Sign+Out. Best regards, Jérôme -- You are currently subscribed to cas-user@lists.jasig.org as: mrcrowley...@yahoo.it To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user -- You are currently subscribed to cas-user@lists.jasig.org as: arch...@mail-archive.com To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user
