> How can I display a message error in casLoginView.jsp, from an > AuthenticationException throwed in X509CredentialsAuthenticationHandler
Our solution: - From a special login form for X.509 certs, we post to https://cas.example.com:9443/login - 9443 must be configured to do optional/want client cert in container/Web server - Customize Web Flow to look for 9443 port in request URL and redirect to error view on authentication failure, otherwise do username/password flow - Issue redirects to get back on standard port for all subsequent views This scenario isn't perfect, but it meets our requirements of displaying a friendly error message on X.509 auth failure. M -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user
