----- "Matt Hamilton" <[email protected]> wrote: > The reverse proxy (at the moment) has no involvement with CAS itself, > just rewrites requests going back and forth (incl 301 locations).
I don't know if it's a recommended practice... but I've solved this by cas enabling the proxy, and restricting access to the web server to only allow requests from the proxy. Best if it can be done on a network layer (web server only attached to network with the proxy, not a network with clients), but the web server can just be set to allow requests only from certain ip's too. Both methods require some amount of control of the web server, which you've said you don't have, but I wanted to make you aware of the option. Thanks, Ryan -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user
