Hi

I am not sure whether this behavior is expected or not and as such maybe a bug.

In the rather unlikey authentication situation where one uses both LDAP and CAS/LDAP together, when the user logs out Moodle appears to run through each of the auth plugins that are enabled and attempts to log the user out of each one in the order they are set in Moodle.

This causes issues, as if the user is authenticated using LDAP/Kerberos and they click the logout link, Moodle logs them out of Kerberos and then goes and attempts to log them out of CAS.

Odd - Why would it do this when it should know that the user is logged in using LDAP/Kerberos?

Our CAS page then just shows "logout successful" and doesnt forward back to Moodle. If the user then navigates back to Moodle they are looged in again Kerberos/LDAP.

I think Moodle needs to check what auth type the user is logged in via, and only attempt to log the user out of that service and not run through all the enabled plugins

Albert