Has anyone tried to integrate CAS with weblogic using SAML?
Doubtful in the way that's implied from subsequent discussion.
We have to configure a partner source ID parameter in weblogic which is a HEX or base64 encoded string of the CAS URL.
Just a guess: try base-64 encoding the fully-qualified /samlValidate URI, which would appear to be the attribute authority URI from the perspective of a SAML service provider.
Another issue that is happening is, CAS is redirecting the artifactID to the same URL in the 'TARGET' query parameter, but according to the SAML browser/Artifact profile specification, it has to be redirected to an Assertion Consumer URL which is https://weblogicserver/samlacs/acs in this case.
Let's clarify whether you're trying to speak SAML 1.1 or SAML 2. I'm a little fuzzy on what profiles are defined in each version, but IIRC browser artifact profile is only defined in SAML 2. Our support for SAML 2 is very limited, but it's technically feasible to dig out the ACS URL from the SAMLRequest parameter and use it as a redirect URL in CAS. While I could give some pointers, that would be an engineering effort you'd tackle on your own. (Though we would appreciate your sharing your work if you accomplish it.)
M -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user
