The RESTful API's API (talk about redundancy) is actually pretty flexible but also relatively simple:
https://www.ja-sig.org/svn/cas3/trunk/cas-server-integration-restlet/src/main/java/org/jasig/cas/integration/restlet/TicketResource.java You can override the obtainCredentials method to obtain the credentials however you want, which should be what you need to parse the headers. Let me know if you have any problems. Cheers, Scott On Thu, Dec 17, 2009 at 11:46 AM, Juan Uys <[email protected]> wrote: > Hello CAS users, > > According to the existing REST documentation ( > http://www.ja-sig.org/wiki/display/CASUM/RESTful+API) , you have the > following request for obtaining a ticket: > > <snip> > POST /cas/tickets HTTP/1.0 > > username=battags&password=password&additionalParam1=paramvalue > </snip> > > My requirement is a bit more elaborate. I don't want to send a password > over the wire, but would instead like to send WSSE parameters, as described > here http://www.xml.com/pub/a/2003/12/17/dive.html: > > <snip> > POST /cas/tickets HTTP/1.1 > > Authorization: WSSE profile="UsernameToken" > X-WSSE: UsernameToken Username="bob", > PasswordDigest="quR/EWLAV4xLf9Zqyw4pDmfV9OY=", > Nonce="d36e316282959a9ed4c89851497a717f", Created="2003-12-15T14:43:07Z" > </snip> > > I literally discovered CAS today, so if someone can point me in the right > direction (if this already exists), or I can either implement this myself, > and/or submit a patch. > > Our company is a major fashion retailer, and we're building an API and > expanding our reach onto kiosks, mobiles, RIA, etc and having a simple > "verify" method that Apache can dispatch to CAS directly would be awesome. > > Thanks, > Juan > -- > You are currently subscribed to [email protected] as: > [email protected] > To unsubscribe, change settings or access archives, see > http://www.ja-sig.org/wiki/display/JSG/cas-user > > -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user
