Only the service the ticket was intended for should be looking at the ticket. Even then, it should only look at the result in the context of a validation call, which would return the user. If another service, such as a web service, needs to authenticate a user, it should be issued a proxy ticket.
-Scott On Tue, Jun 30, 2009 at 5:21 AM, Koby Ram <[email protected]> wrote: > 10x for the prompt reply. > > I am using ST tickets (never choose, I think it is the default). > > What JPA ticket registry? Is it something else I need to use here? A > library? > > What I am trying to do is having a login server (using CAS) after > authentication the user activates a web service stored in the login server > sending his ticket, this web service will need to identify the user_id > behind the ticket and perform SQL select accordingly . > > > > What do you think? > > > > Koby > > > > *From:* Andrew Feller [mailto:[email protected]] > *Sent:* Monday, June 29, 2009 5:42 PM > *To:* [email protected] > *Subject:* Re: [cas-dev] Saving tickets > > > > Koby, > > You could probably do this now with a combination of the JPA Ticket > Registry and specifying a custom expiration policy that expires it far into > the future. What kind of ticket are you trying to store? TGT or ST? Any > particular need you are trying to address? > > A- > > > On 6/29/09 8:03 AM, "Koby Ram" <[email protected]> wrote: > > Hi, > I would like to save the ticket the CAS server generates upon > authentication, meaning upon successful authentication and a generation of a > ticket I need to store this ticket in the local database for future use, is > it possible? > > Many thanks > Koby. > > > -- > Andrew Feller, Analyst > LSU University Information Services > 200 Frey Computing Services Center > Baton Rouge, LA 70803 > Office: 225.578.3737 > Fax: 225.578.6400 > > -- > > You are currently subscribed to [email protected] as: > [email protected] > > To unsubscribe, change settings or access archives, see > http://www.ja-sig.org/wiki/display/JSG/cas-dev > > -- > You are currently subscribed to [email protected] as: > [email protected] > > To unsubscribe, change settings or access archives, see > http://www.ja-sig.org/wiki/display/JSG/cas-dev > > -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-dev
