I am running version 3.5.1. Our SSO is in production and I can't make changes to break it. If I change the redirectView will this be for all the services. What about the services which are passing the redirect link so that user is redirected to the resource after successful login? Will making changes also affect this scenario?
Actually I have a wireless controller and I have defined sso/login as captive portal. But it does not pass the redirect link to the CAS SSO thus CAS does not know where to forward the request once user is authenticated and thus it sits at "/" and does nothing after successful login. Vendor suggested to have a php code to forward the clients on successful login which I will use as a redirect to controller. Any ideas how to go about this? On 4 December 2012 22:54, jleleu <[email protected]> wrote: > OK. I think it would be better to fix this problem on client side. > > Though, if you can't, the redirection is defined in the login-webflow.xml > file, in the redirect action-state. It depends on your CAS server version. > But here is the idea : override the redirectView end-state (for HTTP 302 > redirect) to redirect to some specific url (create a new class inheriting > from ViewSelector for example). > > Be careful with post authentication redirection as it can be a security > breach : you must check that the redirection url is authorized, a good way > to do that is to check that it matches a service defined in back office. > > Best regards, > Jérôme > > -- > You are currently subscribed to [email protected] as: > [email protected] > To unsubscribe, change settings or access archives, see > http://www.ja-sig.org/wiki/display/JSG/cas-user > -- *Farzan Qureshi* | Network Administrator & Help-desk Support | Rosmini College | (09) 487 0 530 -- This email and any files transmitted with it are confidential and intended solely for the use of the individual or entity to whom they are addressed. If you have received this email in error please notify the system manager ( [email protected]). Please note that any views or opinions presented in this email are solely those of the author and do not necessarily represent those of the company. Finally, the recipient should check this email and any attachments for the presence of viruses. Rosmini Collegeaccepts no liability for any damage caused by any virus transmitted by this email. -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user
