Hi Jerome, Thanks for your clarification. Just some queries still * 1)When you state you need two SSOs , do you mean two CAS Servers?* * * * 2) "*You'll have to make some customizations to prevent users logged into app1 to access app2 and users logged into app2 to access app. There are several ways to do that, on the client side (CAS client) or on the server side (CAS server).*"* * Would this be necessary since app2 would never honour users from app1 . App2 doesnt know the roles or credentials of people arriving from App1. Hence would any customizations be necessary at all?* * * Appreciate you feedback to all my queries.
Regards, Franklin On Tue, Feb 28, 2012 at 10:56 PM, jleleu <[email protected]> wrote: > Hi Franklin, > > Things are getting clearer... > > You don't really want a SSO between all your three applications as you > don't want users logged into app1 to access to app2 and users logged into > app2 to access to app1. In a SSO, when a user is authenticated in one > application, it gets access to all the applications. > > It looks like you need two SSO : SSO1 = app1 + app3 and SSO2 = app2 + app3 > (SSO1 uses authentication handler 1, SSO2 uses authentication handler 2). > > You'll have to make some customizations to prevent users logged into app1 > to access app2 and users logged into app2 to access app. There are several > ways to do that, on the client side (CAS client) or on the server side (CAS > server). > > Best regards, > Jérôme > > -- > You are currently subscribed to [email protected] as: > [email protected] > To unsubscribe, change settings or access archives, see > http://www.ja-sig.org/wiki/display/JSG/cas-user > -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user
