Jonathan, What's your use case? When we initially looked at OAuth support for CAS it didn't seem like CAS needed to be involved in the process.
Cheers, Scott On Tue, Sep 21, 2010 at 1:43 PM, Jonathan Bricker <[email protected]>wrote: > I’ll revise my question to ask if it would be better to go the route that > CAS did with OpenID support. The NonInteractiveCredentialAction and the > flow look closer to the OAuth model or at least give me a better way of > integration with CAS. > > > > *From:* Jonathan Bricker [mailto:[email protected]] > *Sent:* Tuesday, September 21, 2010 10:16 AM > *To:* [email protected] > *Subject:* [cas-user] Question about exernal autherization > > > > I’m looking to add an OAuth part to CAS. A bit different than the CAS > OpenID set-up in that it will redirect to another server can get a callback > (with the AccessToken) when the user authenticates. I’m trying to figure > out how best to integrate it with CAS. I’m leaning towards creating a new > restlet service for this using the CAS HttpClient(or extending my own) for > the call. What are the drawbacks/pitfalls for going that route vs putting > it in a servlet? > > > > FYI, I’m planning on using Scribe for the OAuth library. > http://github.com/fernandezpablo85/scribe > > > > Thanks, > > *Jonathan Bricker* > > ExactTarget > > *Senior Software Engineer* > > Office | 317.524.2789 > > Cell | 317.435.0763 > > Email | [email protected] <[email protected]> > > > > -- > > You are currently subscribed to [email protected] as: > [email protected] > > > To unsubscribe, change settings or access archives, see > http://www.ja-sig.org/wiki/display/JSG/cas-user > > -- > You are currently subscribed to [email protected] as: > [email protected] > > To unsubscribe, change settings or access archives, see > http://www.ja-sig.org/wiki/display/JSG/cas-user > > -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user
