Logout SAML questions

Andrew R Feller afelle1 at lsu.edu
Fri Sep 28 11:25:16 EDT 2007 

Scott,

 

Good deal; thanks for the update!  While I was looking into this, I
noticed that there were other XML requests that might be using SAML 2.0
but didn't have the necessary namespace attributes.  I will see about
reviewing the CAS 3.1.0 source to determine whether or not more issues
like this exist.

 

Thanks,

Andy

 

Andrew R Feller, Analyst

Subversion Administrator

University Information Systems

Louisiana State University

afelle1 at lsu.edu

(office) 225.578.3737

________________________________

From: cas-bounces at tp.its.yale.edu [mailto:cas-bounces at tp.its.yale.edu]
On Behalf Of Scott Battaglia
Sent: Friday, September 28, 2007 9:57 AM
To: Yale CAS mailing list
Subject: Re: Logout SAML questions

 

Andrew,

I added the missing namespaces for the upcoming CAS 3.1.1 release:

http://www.ja-sig.org/issues/browse/CAS-570

-Scott

On 9/5/07, Andrew R Feller <afelle1 at lsu.edu> wrote:

Good morning,

 

Just a couple questions in regards to the logout requests sent from CAS
3.1 (http://www.ja-sig.org/wiki/display/CASUM/Single+Sign+Out), 

 

Q: Am I correct in presuming that LogoutRequest is strictly a SAML 2.0
element?

Q: Should the SAML namespaces for logout requests be specified as
attributes within the request?  I ask as the
org.jasig.cas.client.util.XmlUtils blows up when parsing the logout
request as it doesn't understand the samlp prefix.

 

<samlp:LogoutRequest xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"
ID="[RANDOM ID]" Version="2.0" IssueInstant="[CURRENT DATE/TIME]">

<saml:NameID
xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">@NOT_USED@</saml:Name
ID> 

      <samlp:SessionIndex>[SESSION IDENTIFIER]</samlp:SessionIndex>

</samlp:LogoutRequest>

 

Thanks,

 

Andrew R Feller, Analyst

Subversion Administrator

University Information Systems

Louisiana State University

afelle1 at lsu.edu

(office) 225.578.3737

 


_______________________________________________
Yale CAS mailing list
cas at tp.its.yale.edu
http://tp.its.yale.edu/mailman/listinfo/cas




-- 
-Scott Battaglia

LinkedIn: http://www.linkedin.com/in/scottbattaglia 

-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://tp.its.yale.edu/pipermail/cas/attachments/20070928/92fc8193/attachment.html

More information about the cas mailing list