> i strongly believe this is not a suggested way of doing things definetly
I would agree. I understand your needs as needing to authenticate to CAS programmatically, which is certainly possible. I recommend you investigate the RESTful API to CAS, http://www.ja-sig.org/wiki/display/CASUM/RESTful+API. Your integration strategy would be as follows: - Authenticate to CAS by requesting a ticket-granting ticket - Request a service ticket - Validate the service ticket at /samlValidate (assuming you need SAML response) I'm not sure you really need SAML here. It sounds like you can get the username and password out of Salesforce, so just do it and validate the ticket at any reasonable URI (e.g. /validate,/serviceValidate, or /samlValidate), whichever is most convenient for you. Hope that helps, M -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user
