James, You could implement an AuthenticationHandler to bypass authentication for localhost but maybe a better idea would be to create separate endpoints on your REST applications where authentication was turned off. Then, use your firewall or web server to restrict those endpoints to only allow access from/to localhost.
On 12/4/12 12:52 PM, "James Lorenzen" <[email protected]> wrote: >We have setup CAS to authenticate our application and it's working >nicely. We do have one issue we need to workaround however. Our >application has a lot of REST Services and we have code in our backend >that makes requests internally to our local REST Services. But we want >these http requests to bypass authentication if the request comes from >localhost. Basically, we currently have the need to bypass authentication >for Service to Service calls that originate from localhost. Most likely >in the future though we will need to support 3rd party invocation. > >How does CAS support Service to Service invocations? >Does CAS support out of the box the ability to avoid authentication if >coming from localhost? If not, I think we might have to implement our own >Authentication Handler that checks the source ip address and if >localhost, let it bypass authentication. Does that sound about right? > >Thanks, >James Lorenzen >-- >You are currently subscribed to [email protected] as: >[email protected] >To unsubscribe, change settings or access archives, see >http://www.ja-sig.org/wiki/display/JSG/cas-user -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user
