Doubt regarding providing intimation to user about the logout which happens via SLO

[Ankur Verma]

I have successfully configured and implemented the SSO + SLO using following artifacts:

Cas Server 4.1
java client 3.1
ticket authentication and validation protocol- cas2.0
Logout type- backchannel

the problem is that , even after SLO , client is not getting any message of the logout , and whenever a request to a protected resource happens , the client redirects to the cas authentication page. This flow fails when client has input significant amount of information on he UI of another tab(request) in the same session , and instead of a message ( prompt telling user that his session has been logged out ), but instead he just pushes a button say submit. and voila , the request is redirected to authentication post logout from another application and all his data that he meticulously feeded in the form will be lost.

What i understand is there is already a listened in configuring single logout configuration , constantly looking for the SLO event , but how to attach a prompt with it to send some reasonable message to the user so that he can atleast have another options before hitting the save button. 

Please help me.

Thanks!

[Ray Bon]

Ankur,

You could create a filter and place it before the logout filter in web.xml.

Ray

-- 
Ray Bon
Programmer analyst
Development Services, University Systems
2507128831 | CLE 023 | rb...@uvic.ca