Carl, This helps me a lot, thank you.
John On Friday, 20 May 2016 14:49:05 UTC+1, John Rellis wrote: > > Hey folks, > > Apologies for the broad scope of this post. I've been reading the docs > <https://apereo.github.io/cas/4.2.x/index.html> and although I can see > each individual piece I am having trouble deciphering how these pieces fit > together for my use case. > > Right now, I have 4 grails applications that have 4 different databases > containing user information. The applications currently use Shiro to > authenticate users. The goal is to implement single sign on in these > applications. > > I have cloned the cas-overlay-template project, created the war and > launched it in tomcat and can login using the default user and I'm really > at a "now what?" scenario. I have also included the shiro-cas dependency > in the current projects and read this doc > <http://shiro.apache.org/cas.html>. > > This is what I see as our potential process flow, can someone please > correct me if I am going wrong with my understanding of how all this works > and help with some of the questions too, that would be amazing! > > > 1. User hits one of our four applications and is not logged in > 1. Do each of these applications need to be configured as services > on the CAS server? > 2. User is redirected to CAS > 1. this is done through the configuration of shiro as far as I can > tell > 3. User enters their login details into CAS > 1. where are these details matched against? Can they be matched > against the already existing applications or do I need to create a new > database/service to authenticate against? > 4. User is logged into one application > 5. User hits application 2 where they are not logged in, they are > redirected to CAS, a ticket exists for their login and they are allowed > into application two > > > My current understanding is that each application needs to be service and > a ticket is generated at the first login that is stored as a cookie and > this ticket is used to allow access to other applications, is this correct? > > Thank you in advance!!!!! > > John > > -- You received this message because you are subscribed to the Google Groups "CAS Community" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To post to this group, send email to [email protected]. Visit this group at https://groups.google.com/a/apereo.org/group/cas-user/. To view this discussion on the web visit https://groups.google.com/a/apereo.org/d/msgid/cas-user/09451af3-8493-42d7-815d-9e4ddd8b9774%40apereo.org. For more options, visit https://groups.google.com/a/apereo.org/d/optout.
