Assuming the web page that is serving up the chat client is protected with CAS... * after authN and before you server up the chat client, obtain a proxy ticket (PT) for openfire via the PGT * pass the PT to the chat client * the chat client sends the PT to openfire * CASified openfire (CASAuthProvider) validates the PT and gets back "valid ticket for username proxied thru chatclient"
https://wiki.jasig.org/display/CAS/Proxy+CAS+Walkthrough Best, Bill On Wed, May 11, 2011 at 4:52 PM, Jamie Johnson <[email protected]> wrote: > My organization is currently using CAS to provide SSO and are also using a > custom thin client chat application (developed using Strophe.js) to > communicate to an openfire server. We have now been asked to look at making > the chat login also use SSO. I have googled a bit looking for solutions and > the only thing I have found seems to point at writing a custom AuthProvider > on the Openfire side and having the client pass the username and the ticket > to openfire for authentication. I can see how in theory how this would work > but I don't see how from the JavaScript side I can get access to the > username and ticket to use to verify the user has been authenticated in > CAS. Is there a way to do this from JavaScript? If not is there a more > appropriate way to attempt this? > > -- > You are currently subscribed to [email protected] as: > [email protected] > To unsubscribe, change settings or access archives, see > http://www.ja-sig.org/wiki/display/JSG/cas-user -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user
