Logout SAML questions
Andrew R Feller
afelle1 at lsu.edu
Wed Sep 5 10:04:50 EDT 2007
Good morning,
Just a couple questions in regards to the logout requests sent from CAS
3.1 (http://www.ja-sig.org/wiki/display/CASUM/Single+Sign+Out),
Q: Am I correct in presuming that LogoutRequest is strictly a SAML 2.0
element?
Q: Should the SAML namespaces for logout requests be specified as
attributes within the request? I ask as the
org.jasig.cas.client.util.XmlUtils blows up when parsing the logout
request as it doesn't understand the samlp prefix.
<samlp:LogoutRequest xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"
ID="[RANDOM ID]" Version="2.0" IssueInstant="[CURRENT DATE/TIME]">
<saml:NameID
xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">@NOT_USED@</saml:Name
ID>
<samlp:SessionIndex>[SESSION IDENTIFIER]</samlp:SessionIndex>
</samlp:LogoutRequest>
Thanks,
Andrew R Feller, Analyst
Subversion Administrator
University Information Systems
Louisiana State University
afelle1 at lsu.edu
(office) 225.578.3737
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://tp.its.yale.edu/pipermail/cas/attachments/20070905/97c60615/attachment-0001.html
More information about the cas
mailing list