Henry, Have you tried combining the validation filter+HttpServletRequestWrapperFilter with the RemoteUser support in Spring Security (I apologize I forgot the exact name of the support).
Cheers, Scott On Tue, Nov 9, 2010 at 6:51 AM, <[email protected]> wrote: > Hi, > > I've been setting up two webapps using Spring Security where WebAppA > creates a connection to WebAppB. > This gets intercepted by the Cas20ProxyReceivingTicketValidationFilter fine > and validationof the ticket passes, however later the Security Filter fails > because there is no CasAuthenticationToken in the SecurityContextHolder. > > At the moment I'm extending the Cas20ProxyReceivingTicketValidationFilter > to override the onSuccessfulValidation method in the hopes of creating this > CasAuthenticationToken and putting it into the SecurityContextHolder however > I'm having a hard time because the ticket is not passed ot the > onSuccessfulValidation. > > Can anyone suggest if I'm doing this correctly or some documentation on > this matter. > I have been through all of the tutorials on the Cas site and I've googled > extensively over the last few days to try and find some examples of this. I > found that one person was told that Currently the Proxy'ing is not supported > with Spring but it is a requirement and I would like to know if it is > possible at the moment or if I would have to hack some of the base classes. > > Regards, > Henry Barnett > > -- > You are currently subscribed to [email protected] as: > [email protected] > > To unsubscribe, change settings or access archives, see > http://www.ja-sig.org/wiki/display/JSG/cas-user > > > Visit our website at http://www.ubs.com > > This message contains confidential information and is intended only > for the individual named. If you are not the named addressee you > should not disseminate, distribute or copy this e-mail. Please > notify the sender immediately by e-mail if you have received this > e-mail by mistake and delete this e-mail from your system. > > E-mails are not encrypted and cannot be guaranteed to be secure or > error-free as information could be intercepted, corrupted, lost, > destroyed, arrive late or incomplete, or contain viruses. The sender > therefore does not accept liability for any errors or omissions in the > contents of this message which arise as a result of e-mail transmission. > If verification is required please request a hard-copy version. This > message is provided for informational purposes and should not be > construed as a solicitation or offer to buy or sell any securities > or related financial instruments. > > UBS Limited is a company limited by shares incorporated in the United > Kingdom registered in England and Wales with number 2035362. > Registered office: 1 Finsbury Avenue, London EC2M 2PP. UBS Limited > is authorised and regulated by the Financial Services Authority. > > UBS AG is a public company incorporated with limited liability in > Switzerland domiciled in the Canton of Basel-City and the Canton of > Zurich respectively registered at the Commercial Registry offices in > those Cantons with Identification No: CH-270.3.004.646-4 and having > respective head offices at Aeschenvorstadt 1, 4051 Basel and > Bahnhofstrasse 45, 8001 Zurich, Switzerland. Registered in the > United Kingdom as a foreign company with No: FC021146 and having a > UK Establishment registered at Companies House, Cardiff, with No: > BR 004507. The principal office of UK Establishment: 1 Finsbury Avenue, > London EC2M 2PP. In the United Kingdom, UBS AG is authorised and > regulated by the Financial Services Authority. > > UBS reserves the right to retain all messages. Messages are protected > and accessed only in legally justified cases. > -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user
