Access token does not expired.

24 views
Skip to first unread message

SangHyun Kim

unread,
Feb 5, 2018, 4:59:51 AM2/5/18
to CAS Community
Hello.
I installed cas as Oauth provider.
Then there is one problem with signing out.

{
  "@class" : "org.jasig.cas.support.oauth.services.OAuthRegisteredService",
  "clientId": "clientid",
  "clientSecret": "clientSecret",
  "bypassApprovalPrompt": true,
  "generateRefreshToken": true,
  "supported_grants" : ["authorization_code"],
  "supported_responses" : ["code"],  
  "serviceId" : "^(http|https)://(localhost):9000/login",
  "name" : "oauthClient",  
  "id" : 111111111,
  "logout_type": "BACK_CHANNEL",
  "logout_url" : "http://localhost:9000/logout",
   "attributeReleasePolicy" : {
    "@class" : "org.apereo.cas.services.ReturnAllAttributeReleasePolicy"
  }
}


Client start sign in -> Cas send access token -> sign in complete

if I connect to "https://localhost/cas", cas was already logged in. Signing out expireds the ticket but does not expire the access token. 
And the request is not sent to the logout url either.

What should I fix?
Reply all
Reply to author
Forward
0 new messages