> How on CAS can I check for the existence of this "golden ticket" and bypass > login page and programmatically log this user in?
I would recommend developing a custom AuthenticationHandler (and likely a custom Credentials class to go with) that extracts the token from the request and authenticates the user. This workflow is similar to the well known trust authentication mechanism (aka REMOTE_USER). The problem will be determining the principal from the token since I assume it's cryptographically strong/opaque and provides no discernible information about the identity of the user. Note the X.509 authentication workflow provides for non-interactive authentication, so you use that as a template in the login-webflow.xml to wire up your credentials class from the request, which will then get handed off to your custom authentication handler. M -- You are currently subscribed to cas-dev@lists.jasig.org as: arch...@mail-archive.com To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-dev
