On 09/09/2011 16:20, Marvin Addison wrote:
just wondering if anyone had any modules that would allow
smartcard athentication over CAS.
As far as CAS is concerned, a smart card is a specific application of
X.509 authentication that has first-class support in CAS,
https://wiki.jasig.org/display/CASUM/X.509+Certificates. We have
deployed a very similar authentication mechanism using USB tokens and
it works fairly well. The CAS integration is excellent, but the pain
points have been with browser/client integration.
M
Hi, Thanks for the suggestion, I'm not sure exactly how the x.509
works, just been trying to read a bit about it, but from what I can see
that might be a bit of a diversion. I'm working with a specific smart
card system that does no local authentication, but simply sends 3 values
over the network (username/password/md5Sum of smartcard info) . As far
as the client integration goes, our current system allows us to do that
over a browser to a central server database using a select on 3 strings,
however I'm trying to integrate this system using CAS so that it would
work over several sites.
As far as I can see I would have to :
edit loginview
edit deployerconfigcontext
create new credential implementation
create new credentialstoprinicpalresolver implementation
create new authenticationhandler
rebuild with maven.
Was just wondering if anyone had any good tips on doing this or any code
that could help, or if I really could use X.509, I guess I could get a
local login to provide X.509 certificates to users, who would then use
that to log into CAS, but I really would like all this to be handled
centrally by the same server.
Thanks
Martin
--
You are currently subscribed to [email protected] as:
[email protected]
To unsubscribe, change settings or access archives, see
http://www.ja-sig.org/wiki/display/JSG/cas-user
