2π
I donβt know about the Django client (the rubycas-server docs say that currently not all client applications support single sign out) but in order to get the Ruby CAS client to support single sign out you need to do the following (in the client app):
-
The Rails session store must be set to ActiveRecord:
config.action_controller.session_store = :active_record_store -
The server must be able to read and write to RAILS_ROOT/tmp/sessions. If you are in a clustered environment, the contents of this directory must be shared between all server instances.
-
Cross-site request forgery protection must be disabled. In your application.rb:
self.allow_forgery_protection = false. (Or rather you may want to disable forgery protection only for actions that are behind the CAS filter.)
Further information can be found here: https://github.com/gunark/rubycas-client#readme