mod_auth_cas sets a cookie to cache whether or not the user has completed a gateway round trip. This may have later implications if you want the user to be automagically logged in on a semi-protected page (where an anonymous view is presented, or more personalized view for authenticated users) since it won't round trip the user if they started on a gateway page.
-Phil On Mon, Sep 20, 2010 at 3:24 PM, David Wolowicz <[email protected]> wrote: > I'm concerned that the gateway will send a user to the CAS server and back > with every request. That would generate a lot of load :) > > David Wolowicz > Manager of Web Services > University Systems | University of Victoria > (250) 721-6117 | [email protected] > > > -----Original Message----- > From: Matthew J. Smith [mailto:[email protected]] > Sent: Monday, September 20, 2010 12:11 PM > To: [email protected] > Subject: Re: [cas-user] mod_auth_cas and un-authenticated directories > > Sounds like you want to investigate m-a-c's CASGateway option. I have > not pounded heavily on Gateway mode myself, so please report back if you > use this, successfully or otherwise. > > On Mon, 2010-09-20 at 13:43 -0400, David Wolowicz wrote: > > Hi all, > > > > > > > > Here is a predicament that I’m trying to solve. We have a web server > > with a number of folders and sub sites within the file system and the > > domain. Some of these are protected by .htacccess, others are open to > > everyone. What I’m hoping for is the following interaction: > > > > > > > > -If a user is not authenticated, they can go to whatever public > > directory they like on the site > > > > -If a user goes to a protected directory they receive the cas login > > page, and are then authenticated into that folder and all of the other > > folders on the server. > > > > -If an authenticated user goes to a non- authenticated part of the > > site the web server still knows who they are and that they are > > authenticated. (ie: REMOTE_USER is set.) > > > > > > > > Is there a combination of mod_auth_cas settings that can do this? > > > > > > > > Thanks > > > > > > > > David Wolowicz > > > > Manager of Web Services > > > > University Systems | University of Victoria > > > > (250) 721-6117 | [email protected] > > > > > > > > > > -- > > You are currently subscribed to [email protected] as: > [email protected] > > To unsubscribe, change settings or access archives, see > http://www.ja-sig.org/wiki/display/JSG/cas-user > > -- > Matthew J. Smith <[email protected]> > University Information Technology Services > > > -- > You are currently subscribed to [email protected] as: > [email protected] > To unsubscribe, change settings or access archives, see > http://www.ja-sig.org/wiki/display/JSG/cas-user > > -- > You are currently subscribed to [email protected] as: > [email protected] > To unsubscribe, change settings or access archives, see > http://www.ja-sig.org/wiki/display/JSG/cas-user > -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user
