4 * Example for handling logout requests
8 * @file example_logout.php
9 * @category Authentication
11 * @author Joachim Fritschi <jfritschi@freenet.de>
12 * @author Adam Franco <afranco@middlebury.edu>
13 * @license http://www.apache.org/licenses/LICENSE-2.0 Apache License 2.0
14 * @link https://wiki.jasig.org/display/CASC/phpCAS
17 // Load the settings from the central config file
18 require_once 'config.php';
20 require_once $phpcas_path . '/CAS.php';
22 // Uncomment to enable debugging
26 phpCAS::client(CAS_VERSION_2_0, $cas_host, $cas_port, $cas_context);
28 // For production use set the CA certificate that is the issuer of the cert
29 // on the CAS server and uncomment the line below
30 // phpCAS::setCasServerCACert($cas_server_ca_cert_path);
32 // For quick testing you can disable SSL validation of the CAS server.
33 // THIS SETTING IS NOT RECOMMENDED FOR PRODUCTION.
34 // VALIDATING THE CAS SERVER IS CRUCIAL TO THE SECURITY OF THE CAS PROTOCOL!
35 phpCAS::setNoCasServerValidation();
37 // handle incoming logout requests
38 phpCAS::handleLogoutRequests();
40 // Or as an advanced featue handle SAML logout requests that emanate from the
41 // CAS host exclusively.
42 // Failure to restrict SAML logout requests to authorized hosts could
43 // allow denial of service attacks where at the least the server is
44 // tied up parsing bogus XML messages.
45 // phpCAS::handleLogoutRequests(true, $cas_real_hosts);
47 // force CAS authentication
48 phpCAS::forceAuthentication();
50 // for this test, simply print that the authentication was successfull
54 <title>phpCAS simple client</title>
57 <h1>Successfull Authentication!</h1>
58 <?php require 'script_info.php' ?>
59 <p>the user's login is <b><?php echo phpCAS::getUser(); ?></b>.</p>
60 <p>phpCAS version is <b><?php echo phpCAS::getVersion(); ?></b>.</p>
fnp / piwik-CASLogin.git / blob