Maybe the default ootb CAS login JSP should include a user-facing note to this effect of reminding folks trying out CAS that the SSO capability won't work without https (but basic login to one immediate webapp will)?
100% of adopters modify the login JSP to brand locally, so an easy-to-remove div wouldn't be that onerous on production adopters, and putting this documentation right-in-the-face of the casual demoer could make this nuance easier to understand. I think this is a decent enough idea to warrant a JIRA. Noted here: https://issues.jasig.org/browse/CAS-991 Andrew On 06/20/2011 07:36 AM, Scott Battaglia wrote: > > To enable single sign on, CAS must be running over https. > > On Jun 20, 2011 7:29 AM, "pionier" <[email protected] > <mailto:[email protected]>> wrote: > > Hi, > > I have a problem with login to application that uses cas as auht > service. I have two apps (let say App1 and App2) when i login to cas > from App1 and then go to App2 (im not logged in in secod application) > when i try to login, standard cas login page is displayed. Whay is > that? is there some extra settings i have to do in order to be able to > auth via cas when i was allready loged in in another application? I > canot find any tutorial od documentation about that... can someone > point me where to start looking? > > -- > > You are currently subscribed to [email protected] > <mailto:[email protected]> as: [email protected] > <mailto:[email protected]> > > To unsubscribe, change settings or access archives, see > http://www.ja-sig.org/wiki/display/JSG/cas-user > -- > You are currently subscribed to [email protected] as: [email protected] > To unsubscribe, change settings or access archives, see > http://www.ja-sig.org/wiki/display/JSG/cas-user -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user
