Hi, I will provide some detail so you have a better picture of what we want to do.
CURRENT: 1. Luminis Platform is used as Gateway and CAS server 2. Users log into luminis to reset their password 3. JavaScript is used to check password compliance to password rules and to call JSP script via AJAX 4. A PERL script on a different server is used to synchronize the luminis password to AD and the mail system 5. A JSP script on the luminis server acts as a proxy; it sends user name & password to PERL script, receives response and passes on to JavaScript via AJAX. WHAT WE WANT TO DO: 1. CASify the PERL script so it can only be accessed within a CAS authenticated session 2. Modify JSP Proxy script so it can pass the CAS session to the PERL script MY QUESTIONS 1. Is CASifying the PERL script a good idea to begin with? Is there a better way to protect this script? 2. We have used mod_auth_cas to CASify the PERL script but we can seem to pass the CAS session to it via the JSP script; what are we missing? Has any one worked on any method to pass a CAS session via non-web browser means? Thank you in advance. Peter -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user
