RE: [cas-user] IE browser requires authentication everytime for new window, CAS cookie persistent settings

Mon, 30 Mar 2009 21:48:42 -0700 

It turns out that I get expected results using IE7 if I run with SSL.

Date: Mon, 30 Mar 2009 11:32:36 -0700
From: [email protected]
Subject: [cas-user] IE browser requires authentication everytime for new 
window, CAS cookie persistent settings
To: [email protected]








Hi,
    When using IE7, CAS3 always requires authentication when opening in new 
browser because ,as documented, the CAS SSO cookie is session scoped. 
Authentication is not required if user opens new tabs within the same browser 
window apparently because the session is still in scope for new tabs. Note that 
in Firefox, CAS doesn not require authentication when opening new browsers 
because cookies is readable/usable.

So my question: is there anyway for CAS SSO cookie to be used such that 
authentication is not required when opening new browser in IE7 (desired effect 
in Firefox)? I read that this can be overcome by configuring the CAS cookie to 
be persistent as opposed to session-scoped. Specifically this is configured by 
setting the cookieMaxAge to a positive integer (as opposed to -1 which set is 
for session-scoped)


p:cookieMaxAge="3600"         

These settings are in two files:
warnCookieGenerator.xml
ticketGrantingTicketCookieGenerator.xml

reside in /WEB-INF/spring-configuration/   directory.

The problem is that even with setting to positive integer value, user is still 
required to authenticate everytime new window is open. Is there additional 
configuration required?

thanks,

Hanh



Internet Explorer 8 – Get your Hotmail Accelerated. Download free!

-- 
You are currently subscribed to [email protected] as: 
[email protected]
To unsubscribe, change settings or access archives, see 
http://www.ja-sig.org/wiki/display/JSG/cas-user
_________________________________________________________________
Hotmail® is up to 70% faster. Now good news travels really fast.
http://windowslive.com/online/hotmail?ocid=TXT_TAGLM_WL_HM_70faster_032009
-- 
You are currently subscribed to [email protected] as: 
[email protected]
To unsubscribe, change settings or access archives, see 
http://www.ja-sig.org/wiki/display/JSG/cas-user

Reply via email to