> I read in CAS mailing this process of SSO using the cookies JSESSIONID > and CASTGC but only over SSL
This is correct. SSO only works over HTTPS. > But even the cookie are available the other products still require login. How can you be certain the cookie is available? I think we will need some application-side logs to help you diagnose this issue. Pick either Drupal or Moodle and get some logging information about the CAS authentication attempt and post them to this thread, then we should be able to help you further. > I'm new with CAS and I'm wondering if this kind a workflow is valid with CAS It's not only valid, it's the typical workflow. CAS is a SSO product after all. M -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user
