Single Log-Out (SLO)

Unfortunately there is no guaranteed Single log-out, but we offer a possibility to destroy the sessions on single servers with the page logout.tugraz.at. Whether this works or not depends on whether the server is reachable at the moment and that the logout script there is working.
The only really secure way is to close the browser or to delete all cookies in the browser.

In contrast to auth.tugraz.at (or sso.tugraz.at for federated access), where you cannot log in generally, but where you are redirected by services connected to the SSO system to log in, you can access the page logout.tugraz.at directly (and should therefore save it as a favorite, for example).

Example of a Logout Script


#!/usr/bin/perl
use CGI qw/:standard/;
use URI::Escape;

$sso = '/';
# auth.tugraz.at ?
# $sso = 'https://logout.tugraz.at/';
# central logout calls this PERL script
$cookies = $ENV{HTTP_COOKIE};
$cookies =~ s/ //g;
@cookiesArray = split(/\;/, $cookies);
foreach $cookieString (@cookiesArray) {
 if ("$cookieString" =~ "_shibsession_") {
  ($shib,$value) = split (/=/,$cookieString);
 }
}

my $cgi = CGI->new;
my $cookie = $cgi->cookie (
                -name    => $shib,
                -value   => '',
                -expires => '-1d'
);

print $cgi->redirect(-location => $sso, -cookie => $cookie);

Links

Data Breach

Security Incident

IT Security State of the art

CERT.at

IKT-Sicherheitsportal

Cyber Security Austria

Meldestelle Kinderpornografie

Meldestelle Hass & rassistische Diskriminierung