oauth-2.0 single-sign-on google-oauth jasig

Log out of the jasig cas4.0 not logging out of google OAuth2.0 service

I am trying to implement OAuth services in jasig cas4.0. The login feature works correctly.

But when I logout of the cas session(http: //localhost:8080/cas/logout), and then again try to login using google OAuth service, it automatically logs me in without having to provide the username and passwords or permission.

Probably I am missing some configuration. Could somebody enlighten me what am I missing?

Solution

Disclaimer: I'm the Chairman of CAS and founder of CAS in the cloud (https://www.casinthecloud.com). I'm the creator of the pac4j library as well.

When you call the CAS logout, it deletes the SSO session, but do not logout from OAuth providers you could use like Google or Facebook. Therefore you may still be authenticated by Google and can log in without entering any username and password, nor validating permissions.

SMTP and OAuth 2
Verify the integrity of Google ID token in Ruby
openliberty openidConnectClient authFilter not working
What's the point of refresh token?
What is the purpose of a "Refresh Token"?
"no_valid_keys_or_signatures" Error Calling DocuSign API through Java SDK for OAuth 2.0 Authentication
oauth2 proxy with Ingress nginx not passing X-Auth-Request headers during standard auth flow
How to configure OAuth2AuthorizedClientManager with an HTTP proxy?
Spotify API AttributeError: module 'spotipy.util' has no attribute 'oauth2'
3rd party cookies in Android 14/New Chrome using Angular/Firebase Auth/Hosting and NodeJs in Server
Error: Invalid Request: Value passed for the authorization code was invalid
Spring Security OAuth2 - Add parameter to Authorization URL
Gmail Oauth2 - restrict the scope to only emails from a certain domain
In Scala/Akka, how would I go about correctly implementing user permissions in combination with oAuth2?
Use Oauth2+Django to get authorization to access user's Gmail
Ruby & IMAP - Accessing Office 365 with Oauth 2.0
Facebook graph api returns 400 bad request with correct access token
How do I add audience validation using Spring OAuth without needing the issuer?
How to make Depends optional in FastAPI?
Getting refresh token for gmail API with Spring Security
Creating firebase user with authentication information from Salesforce
Where to store the refresh token on the Client?
Swift Discord OAuth2 redirect URi not supported by Client
Apim policy to validat token for b2b and as well as b2c tenant token endpoints
Google OAuth 2 Error 400: redirect_uri_mismatch but redirect uri is compliant and already registered in Google Cloud Console
Google APIs Console - missing client secret
Automating access token refreshing via interceptors in axios
Supabase does not append code parameter to the redirect URL after OAuth login
How/why is login page redirect required?
Where can I find a list of scopes for Google's OAuth 2.0 API?