Setup: Two services configured via Services Management (SM). One service (casapp) is configured to opt-out of SSO via SM. The other app is SM.
Steps to reproduce: 1) login into SM (challenged for credentials, initiate SSO) 2) try to login to casapp - expected to get challenged for credentials, instead get a CAS screen that says: "You attempted to access a service that requires authentication without re-authenticating. Please try authenticating again." The link under "try authenticating again" is the original cas login redirect, but this time with renew=true tacked on the end. Is the expectation that the SM config be complemented with a client config of renew=true? I'd like to manage SSO with SM, but the current behavior leads me to believe no one is actually doing this (at least not without the renew=true also at the client). Why doesn't the CAS server simply challenge for credentials like renew=true? Am I missing something? Bill -- You are currently subscribed to cas-dev@lists.jasig.org as: arch...@mail-archive.com To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-dev
