Logout SAML questions

Scott Battaglia scott.battaglia at gmail.com
Fri Sep 28 11:33:58 EDT 2007 

Andrew,

Unless someone snuck something in while I wasn't looking that should be the
only SAML 2.0 type code (other than the Google Accounts stuff...which has
been tested).

There is some SAML 1.1 one code but that has also been checked.

If you do see something let me know though ;-)

Thanks
-Scott

On 9/28/07, Andrew R Feller <afelle1 at lsu.edu> wrote:
>
>  Scott,
>
>
>
> Good deal; thanks for the update!  While I was looking into this, I
> noticed that there were other XML requests that might be using SAML 2.0but didn't have the necessary namespace attributes.  I will see about
> reviewing the CAS 3.1.0 source to determine whether or not more issues
> like this exist.
>
>
>
> Thanks,
>
> Andy
>
>
>
> Andrew R Feller, Analyst
>
> Subversion Administrator
>
> University Information Systems
>
> Louisiana State University
>
> afelle1 at lsu.edu
>
> (office) 225.578.3737
>   ------------------------------
>
> *From:* cas-bounces at tp.its.yale.edu [mailto:cas-bounces at tp.its.yale.edu] *On
> Behalf Of *Scott Battaglia
> *Sent:* Friday, September 28, 2007 9:57 AM
> *To:* Yale CAS mailing list
> *Subject:* Re: Logout SAML questions
>
>
>
> Andrew,
>
> I added the missing namespaces for the upcoming CAS 3.1.1 release:
>
> http://www.ja-sig.org/issues/browse/CAS-570
>
> -Scott
>
> On 9/5/07, *Andrew R Feller* <afelle1 at lsu.edu> wrote:
>
> Good morning,
>
>
>
> Just a couple questions in regards to the logout requests sent from CAS
> 3.1 (http://www.ja-sig.org/wiki/display/CASUM/Single+Sign+Out),
>
>
>
> Q: Am I correct in presuming that LogoutRequest is strictly a SAML 2.0element?
>
> Q: Should the SAML namespaces for logout requests be specified as
> attributes within the request?  I ask as the
> org.jasig.cas.client.util.XmlUtils blows up when parsing the logout
> request as it doesn't understand the samlp prefix.
>
>
>
> <samlp:LogoutRequest xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"
> ID="[RANDOM ID]" Version="2.0" IssueInstant="[CURRENT DATE/TIME]">
>
> <saml:NameID xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion
> ">@NOT_USED@</saml:NameID>
>
>       <samlp:SessionIndex>[SESSION IDENTIFIER]</samlp:SessionIndex>
>
> </samlp:LogoutRequest>
>
>
>
> Thanks,
>
>
>
> Andrew R Feller, Analyst
>
> Subversion Administrator
>
> University Information Systems
>
> Louisiana State University
>
> afelle1 at lsu.edu
>
> (office) 225.578.3737
>
>
>
>
> _______________________________________________
> Yale CAS mailing list
> cas at tp.its.yale.edu
> http://tp.its.yale.edu/mailman/listinfo/cas
>
>
>
>
> --
> -Scott Battaglia
>
> LinkedIn: http://www.linkedin.com/in/scottbattaglia
>
> _______________________________________________
> Yale CAS mailing list
> cas at tp.its.yale.edu
> http://tp.its.yale.edu/mailman/listinfo/cas
>
>


-- 
-Scott Battaglia

LinkedIn: http://www.linkedin.com/in/scottbattaglia
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://tp.its.yale.edu/pipermail/cas/attachments/20070928/3c1f0d2e/attachment.html

More information about the cas mailing list