Hello, Thank you very much for your quick answer. Does it mean that if all my applications accessible over HTTPS even on different domains SSO will work?
I have network configuration, where I have firewall and balancer which receives https:// but in internal network redirect via http. Do you think it can be a problem or not? (I didn't test in this environment yet) -- Regards, Dmitry Kudrenko 2011/8/24 Marvin Addison <[email protected]> > > I configured CAS with several my applications on different platforms > (Java and PHP). I can login to any of the application, but when I login to > one application and try to open another application it always shows me login > page. > > The most common cause is accessing the applications over HTTP. The > CAS SSO cookie is only transmitted to clients over SSL since it has > the "secure" flag set. CAS itself and at least the entry point of > your applications should be accessible exclusively over SSL. > > M > > -- > You are currently subscribed to [email protected] as: > [email protected] > To unsubscribe, change settings or access archives, see > http://www.ja-sig.org/wiki/display/JSG/cas-user > -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user
