I'll revise my question to ask if it would be better to go the route that CAS did with OpenID support. The NonInteractiveCredentialAction and the flow look closer to the OAuth model or at least give me a better way of integration with CAS.
From: Jonathan Bricker [mailto:[email protected]] Sent: Tuesday, September 21, 2010 10:16 AM To: [email protected] Subject: [cas-user] Question about exernal autherization I'm looking to add an OAuth part to CAS. A bit different than the CAS OpenID set-up in that it will redirect to another server can get a callback (with the AccessToken) when the user authenticates. I'm trying to figure out how best to integrate it with CAS. I'm leaning towards creating a new restlet service for this using the CAS HttpClient(or extending my own) for the call. What are the drawbacks/pitfalls for going that route vs putting it in a servlet? FYI, I'm planning on using Scribe for the OAuth library. http://github.com/fernandezpablo85/scribe Thanks, Jonathan Bricker ExactTarget Senior Software Engineer Office | 317.524.2789 Cell | 317.435.0763 Email | [email protected]<mailto:[email protected]> -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user
