CAS单点退出不起作用
[英]CAS single sign out not working
问题描述
I have installed a CAS server (v3.5.2) on Apache Tomcat and 2 clients on JBOSS. 
我已经在Apache Tomcat上安装了CAS服务器(v3.5.2),并在JBOSS上安装了2个客户端。 Everything works fine unless single sign out. 除非单点退出,否则一切正常。
I think all I made is fine but there is still this problem. 我认为我所做的一切都很好,但是仍然存在这个问题。
My configuration server-side : In WEB-INF\\deployerConfigContext.xml : 我的配置服务器端:在WEB-INF \\ deployerConfigContext.xml中:
<bean class="org.jasig.cas.services.RegexRegisteredService">
<property name="id" value="1" />
<property name="name" value="HTTP and IMAP on localhost:8080/firstCasClient" />
<property name="description" value="Allows HTTP(S) and IMAP(S) protocols on localhost:8080/firstCasClient" />
<property name="serviceId" value="^(https?|imaps?)://([A-Za-z0-9_-]+\.)*localhost:8080/firstCasClient/*" />
<property name="ssoEnabled" value="true" />
<property name="enabled" value="true" />
<property name="evaluationOrder" value="0" />
</bean>
<bean class="org.jasig.cas.services.RegexRegisteredService">
<property name="id" value="2" />
<property name="name" value="HTTP and IMAP on localhost:8080/secondCasClient" />
<property name="description" value="Allows HTTP(S) and IMAP(S) protocols on localhost:8080/secondCasClient" />
<property name="serviceId" value="^(https?|imaps?)://([A-Za-z0-9_-]+\.)*localhost:8080/secondCasClient/*" />
<property name="ssoEnabled" value="true" />
<property name="enabled" value="true" />
<property name="evaluationOrder" value="1" />
</bean>
Configuration in clients : In web.xml : 客户端中的配置:在web.xml中:
<!-- CAS SINGLE SIGN OUT -->
<filter>
<filter-name>CAS Single Sign Out Filter</filter-name>
<filter-class>org.jasig.cas.client.session.SingleSignOutFilter</filter-class>
<init-param>
<!-- because of use of Saml11TicketValidationFilter -->
<param-name>artifactParameterName</param-name>
<param-value>SAMLart</param-value>
</init-param>
</filter>
<filter-mapping>
<filter-name>CAS Single Sign Out Filter</filter-name>
<url-pattern>/*</url-pattern>
<dispatcher>REQUEST</dispatcher>
<dispatcher>FORWARD</dispatcher>
</filter-mapping>
<listener>
<listener-class>org.jasig.cas.client.session.SingleSignOutHttpSessionListener</listener-class>
</listener>
<!-- other filters -->
<filter>
<filter-name>CAS Authentication Filter</filter-name>
<filter-class>org.jasig.cas.client.authentication.AuthenticationFilter</filter-class>
<init-param>
<param-name>casServerLoginUrl</param-name>
<param-value>http://localhost:8888/cas-server-webapp-3.5.2/login</param-value>
</init-param>
<init-param>
<param-name>service</param-name>
<param-value>http://localhost:8080/firstCasClient</param-value>
</init-param>
</filter>
<filter>
<filter-name>CAS Validation Filter</filter-name>
<filter-class>org.jasig.cas.client.validation.Saml11TicketValidationFilter</filter-class>
<init-param>
<param-name>casServerUrlPrefix</param-name>
<param-value>http://localhost:8888/cas-server-webapp-3.5.2</param-value>
</init-param>
<init-param>
<param-name>service</param-name>
<param-value>http://localhost:8080/firstCasClient</param-value>
</init-param>
</filter>
<filter>
<filter-name>CAS HttpServletRequest Wrapper Filter</filter-name>
<filter-class>org.jasig.cas.client.util.HttpServletRequestWrapperFilter</filter-class>
</filter>
<filter>
<filter-name>CAS Assertion Thread Local Filter</filter-name>
<filter-class>org.jasig.cas.client.util.AssertionThreadLocalFilter</filter-class>
</filter>
<filter-mapping>
<filter-name>CAS Authentication Filter</filter-name>
<url-pattern>/*</url-pattern>
<dispatcher>REQUEST</dispatcher>
<dispatcher>FORWARD</dispatcher>
</filter-mapping>
<filter-mapping>
<filter-name>CAS HttpServletRequest Wrapper Filter</filter-name>
<url-pattern>/*</url-pattern>
<dispatcher>REQUEST</dispatcher>
<dispatcher>FORWARD</dispatcher>
</filter-mapping>
<filter-mapping>
<filter-name>CAS Validation Filter</filter-name>
<url-pattern>/*</url-pattern>
<dispatcher>REQUEST</dispatcher>
<dispatcher>FORWARD</dispatcher>
</filter-mapping>
<filter-mapping>
<filter-name>CAS Assertion Thread Local Filter</filter-name>
<url-pattern>/*</url-pattern>
<dispatcher>REQUEST</dispatcher>
<dispatcher>FORWARD</dispatcher>
</filter-mapping>
I hope someone would find what is wrong thanks anyway 我希望有人能找到错误的地方
1 个解决方案
解决方案1
1 2013-07-30 15:31:02
Make sure in your argumentExtractorsConfiguration.xml file that the casArgumentExtractor bean has the disableSingleSignOut property set to false. 确保在您的argumentsExtractorsConfiguration.xml文件中,casArgumentExtractor bean的disableSingleSignOut属性设置为false。 If you see the following: 如果看到以下内容:
<bean id="casArgumentExtractor"
class="org.jasig.cas.web.support.CasArgumentExtractor"
p:httpClient-ref="noRedirectHttpClient"
p:disableSingleSignOut="${slo.callbacks.disabled:false}" />
Take a look in your cas.properties and make sure slo.callbacks.disabled is not set to true. 查看cas.properties,并确保slo.callbacks.disabled未设置为true。 the ${slo.callbacks.disabled:false} means look for that property, and if it is not found default it to false. ${slo.callbacks.disabled:false}表示查找该属性,如果未找到,则默认为false。
声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.