Its possible to use the token to create a TGT.
The Access Manager token is a form of "non-interactive" credentials much
like an X.509 Certificate or SPNEGO (assuming you're using a Microsoft
browser that won't prompt). Your architect's suggestion will work, similar
to the way those methods work.
>This is a dead-end strategy; you will not be able to accomplish your
>goal as stated by creating an authentication handler for Access
>Manager tokens.
You have validated my concerns.
Unfortunately, even if I were to show your assessment to the architect I don't
think he'd believe you.
I reall
> When the CAS filter redirects the application to the CAS server we want to
> intercept the request and see if there is a Access Manager token (cookie) and
> validate it. If the token is valid we want to return to the filter that the
> user is valid. Same as if the application had a valid CAS
o: cas-dev@lists.jasig.org
Subject: Re: [cas-dev] How to add an Authentication Handler
> I am going to use the x509 handler as a template unless anyone has a
> better suggestion.
Use the existing handler that is most like the one you are planning to
write. Is this the Sun Access Manager SSO
> I am going to use the x509 handler as a template unless anyone has a
> better suggestion.
Use the existing handler that is most like the one you are planning to
write. Is this the Sun Access Manager SSO product? I know nothing
about it, but unless it uses client certificates, the X.509 h
Ok I have been given this assignment:
Add an Authentication Handler to the CAS server source that will authenticate
Access Manager Tokens. I need to have it prototyped by Friday of this week.
Oh yeah, I am not allowed to use Eclipse, I am stuck with vi / maven (no I am
not kidding).
I am goin
