Hello Michael, Iam also trying to implement custom page for login and password instead of being redirected to CAS official login page. But no success.
Hope someone could do some sample for us. Its really mandatory. Thanks נשלח מה-HTC שלי ----- Reply message ----- מאת: "Michael Wechner" <michael.wech...@wyona.com> אל: "cas-user@lists.jasig.org" <cas-user@lists.jasig.org> נושא: [cas-user] Why is a login ticket needed? תאריך: יום ו׳, נוב 8, 2013 19:59 Hi I am still working on generating the login screen by the content management system instead CAS, whereas I have read https://wiki.jasig.org/display/CAS/Using+CAS+without+the+Login+Screen I understand that one wants to prevent that credentials are being sent to the content management system, but having the action pointing to the CAS Server directly <form action="https://127.0.0.1:7070/cas-server-webapp-3.5.2/login"; method="POST"> does not seem to me like violating in security issues. But of course this does not work because of the required Login Ticket. I have been reading http://www.jasig.org/cas/protocol but I still don't really understand what's the purpose of the Login Ticket. Does somebody have some more hints on this? I am currently considering to disable the login ticket validation inside cas-server-3.5.2/cas-server-core/src/main/java/org/jasig/cas/web/flow/AuthenticationViaFormAction.java but I guess this is not really considered best practice :-) Thanks Michael -- You are currently subscribed to cas-user@lists.jasig.org as: id...@cellebrite.com To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user This e-mail and the information it contains may be privileged and/or confidential. It is intended solely for the use of the named recipient(s). If you are not the intended recipient you may not disclose, copy, distribute or retain any part of this message or attachments. If you have received this e-mail in error please notify the sender immediately [by clicking 'Reply'] and delete this e-mail. -- You are currently subscribed to cas-user@lists.jasig.org as: arch...@mail-archive.com To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user
