This work is interesting to me, because we have implemented a similar feature at our organization. We also had a need to pass legacy application credentials to a service, based on a mapping between a CAS net id and a legacy credential (or credentials, where an SSO user had multiple accounts on the legacy system). What we did, was to manage the mapping between net_id and application user and password in a database accessible to the CAS server, and customize CAS to return the legacy application user and password as normal CAS managed attributes in the CAS validation response to the legacy application. The legacy application can then use these attributes to establish an appropriate application session for the SSO user. What is the advantage of the clearpass approach? Or am I misunderstanding and these two features are apples and oranges?
________________________________ From: Scott Battaglia [mailto:[email protected]] Sent: Monday, 23 November 2009 1:02 p.m. To: [email protected] Subject: [cas-dev] ClearPass 1.0.0.GA Dear CAS Community, We're pleased to announce the release of 1.0.0.GA of the ClearPass Extension for CAS. ClearPass is designed for that unpleasant task of integrating your single sign on environment with legacy applications. This first release is based on the original work done by Unicon for Sacramento State, and has been sponsored by Unicon's Cooperative Support Program. ClearPass has been designed as another Maven2 module for your CAS deployment, and as such, is deployed into the Jasig Maven Repository. Complete instructions on how to incorporate ClearPass into your installation are available here: http://www.ja-sig.org/wiki/display/CASUM/ClearPass ClearPass should work with newer versions of CAS (3.3.3+) and the latest uPortal 3.2 Snapshot. Cheers, Scott -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-dev -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-dev
