> - Will the JAAS Authentication not use the CAS Login-Page at all? Cause this > would be the goal.
Just to confirm, you would like to avoid the CAS login page? The JAAS module itself does not cause a redirect to CAS for authentication, yet that is the intended and supported workflow. Another component, WebAuthenticationFilter, provides that functionality in the form of a servlet filter. This component is specific to JBoss. We fully expect similar components could be developed for other JEE containers, and it may be possible to develop a component that avoids the redirect to CAS. We do not support, however, CAS authentication outside the login URI. In fact we strongly discourage authentication methods that attempt to subvert traditional CAS login. > The reason for this is: If the CAS Auth should fail, the JAAS module would > just go to the next one We haven't thoroughly investigated module chaining with the CAS JAAS module, but it should work fine. The user experience may be terrible, but that's the cost of CAS authentication via JAAS. > - If the first time im being redirected to CAS it would be basically almost > useless Hardly useless in the case authentication succeeds. I fully admit the user experience is not ideal for the failure case, but hardly useless either. > How do i configure the Filters and Mappings in JBoss AS 4.2.3 and JBoss > Portal? Since there are a LOT of web.xmls and i dont quite know which one is > the correct one. It is our intention that the official documentation, https://wiki.jasig.org/display/CASC/JAAS+Integration, is sufficient. I'm happy to improve the documentation to help you get it working for your use case if you can make specific recommendations. M -- You are currently subscribed to cas-user@lists.jasig.org as: arch...@mail-archive.com To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user
