Is this in CAS or in the secured application?
On Tue, Oct 16, 2012 at 4:19 PM, Jesse Farinacci wrote:
> Greetings,
>
> On Mon, Oct 15, 2012 at 5:24 PM, Jamie Johnson wrote:
>> I have a service secured behind CAS which works properly but I'd like
>> to remove the jsessi
I have a service secured behind CAS which works properly but I'd like
to remove the jsessionid from the URL, is this possible? I had seen
that this issue is resolved in older versions but perhaps I am
misreading the issue.
the URL being presented to the user is as follows
https://localhost:8443/
Shiro claims to support this behavior and might be option for
> Java based applications. Shiro also has some support for CAS.
>
> http://shiro.apache.org/
>
> Best,
> Bill
>
>
>
> On Wed, May 16, 2012 at 4:31 PM, Jamie Johnson wrote:
>> We currently are using CAS and Spri
n each web application could use to lookup if a user
was revoked or not. Is there a better approach for handling
situations like this?
On Wed, May 16, 2012 at 4:31 PM, Jamie Johnson wrote:
> We currently are using CAS and Spring Security to secure several
> applications and have been asked
We currently are using CAS and Spring Security to secure several
applications and have been asked by our customer to investigate how we
can support revoking a users access and having that take effect
immediately. Is there a way to do this in CAS? My first thought was
to add a SAML Ticket Validato
aultTicketRegistry] (http-8443-1)
Added ticket [TGT-3-yFm2zdXsSdAadgqS1bvyMhCkHt6eTpOY9EAXFrf2KeHF3LS1PC-cas]
to registry.
2012-05-05 17:11:08,597 DEBUG
[com.noelios.restlet.ext.spring.RestletFrameworkServlet] (http-8443-1)
Successfully completed request
On Sat, May 5, 2012 at 10:52 AM, Jamie Joh
Marvin,
Nothing particular is jumping out at me. Is there something specific
I should be looking for?
It should also be possible to easily replicate this since you only
need to add the valve to a tomcat instance which CAS is deployed to
and attempt to hit the endpoint below. Would it be possibl
I have a tomcat instance which I've configured container managed
security on by setting up the conf/context.xml as follows
WEB-INF/web.xml
https://hostname:443/cas/login";
casServerUrlPrefix="https://hostname:443/cas/";
serverName="hostname"
/>
/CAS/Proxy+CAS+Walkthrough
>
> Best,
> Bill
>
> On Wed, May 11, 2011 at 4:52 PM, Jamie Johnson wrote:
> > My organization is currently using CAS to provide SSO and are also using
> a
> > custom thin client chat application (developed using Strophe.js) to
> > co
My organization is currently using CAS to provide SSO and are also using a
custom thin client chat application (developed using Strophe.js) to
communicate to an openfire server. We have now been asked to look at making
the chat login also use SSO. I have googled a bit looking for solutions and
th
I am getting the following exception when trying to setup authentication for
my spring app and cas, can anyone point me in the direction of what this
means and how to resolve it?
2010-06-29 21:19:34,038{UTC} ERROR [org.jasig.cas.web.
ServicValidateController] TicketException generating ticket for:
Is there any documentation on setting up GSSAPI on top of CAS so
applications like Openfire could be used with CAS? I am new to the
subject of GSSAPI so if anyone has any details beyond what is on
wikipedia it would be appreciated.
My understanding is that GSSAPI abstracts the underlying details
It's been a while since I've sent this with no responses...does that
mean this is not something that anyone has attempted?
On Mon, Mar 29, 2010 at 3:34 PM, Jamie Johnson wrote:
> I saw several threads on possibly casifying openfire (XMPP Server) but
> do not have a lot of experi
I saw several threads on possibly casifying openfire (XMPP Server) but
do not have a lot of experience with CAS to know where to start.
First off let me start by describing my environment. I am using a
JSJaC (JS API for XMPP collaboration) javascript tool for logging
into the server. The tool is
en
> replay it when they come back.
>
>
> On Wed, Feb 24, 2010 at 1:42 PM, Jamie Johnson wrote:
>>
>> So it looks like my assumptions were correct in that if I have both
>> authenticating against CAS things work great. An issue arises however
>> when the sess
ncept of views what is the most appropriate way to
handle time outs? We can't simply fwd to the CAS login page as this
will cause whatever the user was doing in flex to be lost after CAS
fwds the user back to the page. Any thoughts?
On Tue, Feb 23, 2010 at 4:15 PM, Jamie Johnson wrote:
I have a requirement to integrate a Flex based client with a REST
Service that is secured using CAS and was wondering what integration
strategies others have taken. Some of the messages I've read from
this list seem to indicate that if the Flex client is secured behind
the same CAS instance things
17 matches
Mail list logo