LDAP login status and impossible logout

[Annakan]

Hello
I am trying to set up LDAP authentification on a trac instance under WSGI.
I am able to successfully long in and the user credential are passed to trac (wether WSGIPassAuthorization is "on" or "off" by the way with puzzles me but I suppose trac use the REMOTE_USER env var. ).

But I can't log out, ever.

I did my research and found various hacks and solutions some back 8 years ago but most of them were concluded saying AccountManager solved the problem.

I think I am in a misunderstand that it does solve the problem by not treating it at the HTTP stage right ?

Meaning when one use the HttpAuthStore and LDAP the problem is back and unsolvable is that right ?

It means if I want login/logout I need to use LDPA extension or or http://trac-hacks.org/browser/ldapauthstoreplugin/0.11 witch seem to be the base the AccountManager has its eyes on to integrate LDAP and AccountManager ?

Am I wrong about this ?

I am trying to navigate the maze of LDAP/Auth/Authz plugins and I am bit lost ;)

I really do need SSO and LDAP is the most general tool for that I think.

And this ticket is also a token of interest in the LDAP authstore and more efficient integration in a global toolset.

Thanks a lot for your time and work on the AccountManager module.