Salesforce is just an example, it could be any portal, as i explained before users will be authenticated with the 3rd party system which we dont have control. so we will not be getting password along with username.
yes, it really doesnt matter weather its a SAML or just a URL based request, but what ever the request type be, we will be getting only username so i need to trick the CAS to do programatic authentication when such request is received (note: we are not worried much about the authenticity of the request source as we have custom ways to find it) is there a way i can do this programatically? Thank you, bala. On Wed, Jun 17, 2009 at 6:52 PM, Marvin Addison <[email protected]>wrote: > > i strongly believe this is not a suggested way of doing things definetly > > I would agree. I understand your needs as needing to authenticate to > CAS programmatically, which is certainly possible. I recommend you > investigate the RESTful API to CAS, > http://www.ja-sig.org/wiki/display/CASUM/RESTful+API. Your > integration strategy would be as follows: > > - Authenticate to CAS by requesting a ticket-granting ticket > - Request a service ticket > - Validate the service ticket at /samlValidate (assuming you need > SAML response) > > I'm not sure you really need SAML here. It sounds like you can get > the username and password out of Salesforce, so just do it and > validate the ticket at any reasonable URI (e.g. > /validate,/serviceValidate, or /samlValidate), whichever is most > convenient for you. > > Hope that helps, > M > > -- > You are currently subscribed to [email protected] as: > [email protected] > To unsubscribe, change settings or access archives, see > http://www.ja-sig.org/wiki/display/JSG/cas-user > -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user
