Yes, so my original url is http://127.0.0.1:8080/details<http://www.google.com/url?q=http%3A%2F%2F127.0.0.1%3A8080%2Fdetails%2Fcallback%3Fclient_name%3DCasClient&sa=D&sntz=1&usg=AFQjCNHmF24lyCht6c84ldd4PI8qh36kAA>
And then I try to call https://10.222.345.123:8080/cas/login?service=http://127.0.0.1:8080/details?renew=true However it reloads the page with a new ticket like so: http://127.0.0.1:8080/details?renew=true&ticket=ST-1095-6cHLzsFkF4NYM4NviOcgsdfsdrgdsfal But it does not prompt me to input my user credentials again. On the server side I do the following prior to calling the CAS login: HttpSession session = request.getSession(false); session.invalidate(); SecurityContext context = SecurityContextHolder.getContext(); Authentication auth = context.getAuthentication(); if (auth != null) { new SecurityContextLogoutHandler().logout(request, response, auth); } context.setAuthentication(null); On Monday, May 19, 2014 11:40:14 AM UTC+1, Jérôme LELEU wrote: > > I'm not sure I was clear enough here, but you must go to the CAS login url > with the renew=true parameter, this parameter is applied on the CAS server > side... > > > 2014-05-19 12:11 GMT+02:00 chris nikitas <chrisn...@gmail.com<javascript:> > >: > >> Using the ?renew=true <http://myservice/?renew=true>.query parameter, it >> reloads the same page but does not prompt me to the CAS login page. >> >> I have a suspicion maybe the service ticket is still on the client or >> something... >> >> On Monday, May 19, 2014 10:03:23 AM UTC+1, Jérôme LELEU wrote: >>> >>> Hi, >>> >>> I'm not exactly sure of what flow you have in mind, but you can force a >>> re-authentication (even if the user is already authenticated) by using the >>> renew parameter on the login url: /cas/login?service=http:// >>> myservice?renew=true. >>> Best regards, >>> Jérôme >>> >>> >>> 2014-05-19 10:58 GMT+02:00 chris nikitas <chrisn...@gmail.com>: >>> >>>> Hi all, >>>> >>>> My application, talks to a third-party app which keeps it's own >>>> authentication token. >>>> >>>> What I want to do is the following: >>>> >>>> If that third-party token expires, I want to force a CAS relogin (give >>>> the user the CAS login form to enter their credentials) and upon >>>> successful >>>> relogin, return to the page the were on. >>>> >>>> My app is using Spring Security and AngularJS at the front (if that >>>> makes a difference). >>>> >>>> What would be the best way to go about this? >>>> >>>> Thanks, >>>> Chris. >>>> >>>> -- >>>> You are currently subscribed to cas-...@lists.jasig.org as: >>>> lel...@gmail.com >>>> To unsubscribe, change settings or access archives, see >>>> http://www.ja-sig.org/wiki/display/JSG/cas-user >>>> >>>> >>> -- >>> You are currently subscribed to cas-...@lists.jasig.org as: >>> jasig-cas-user...@googlegroups.com >>> To unsubscribe, change settings or access archives, see >>> http://www.ja-sig.org/wiki/display/JSG/cas-user >>> >>> -- >> You are currently subscribed to cas-...@lists.jasig.org <javascript:> as: >> lel...@gmail.com <javascript:> >> To unsubscribe, change settings or access archives, see >> http://www.ja-sig.org/wiki/display/JSG/cas-user >> >> > -- > You are currently subscribed to cas-...@lists.jasig.org <javascript:> as: > jasig-cas-user...@googlegroups.com <javascript:> > To unsubscribe, change settings or access archives, see > http://www.ja-sig.org/wiki/display/JSG/cas-user > > -- You are currently subscribed to cas-user@lists.jasig.org as: arch...@mail-archive.com To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user
