Conceptual question. A client successfully logs into service-A. A Ticket-Granting Cookie is added to the clients browser.
The client then moves to service-B, which redirects to CAS and CAS finds the TGC. The TGC is inspected and if valid generates a new Service Ticket for service-B. As far as I can tell, from docs, api, etc, for a TGC to be valid it must be in the ticket registry, it must not have expired and the principals must match. It is the last point that I'm having trouble with: Matching principals. Can someone please explain how service_B gives the principal to CAS in order for CAS to match them in the validation of the TGC. Many Thanks. _______________________________________________ Yale CAS mailing list [email protected] http://tp.its.yale.edu/mailman/listinfo/cas
