I was recently thrown into a project and I am trying to come up to speed quickly. Given my new exposure, I am a bit uncertain as to the precise processing chain, but, this is the world as I understand it:
User hits our URL on our IIS server, and is automatically redirected by our .NET CAS client to the CAS server. The response comes back to the CAS client on our IIS server, then the client continues to the original URL (assuming they authenticated of course). I grabbed the .NET client from here: https://wiki.jasig.org/display/CASC/.Net+Cas+Client I am tasked with processing the SAML response and make some DB updates based on that response. Question 1: Is the correct place to process those values in the .NET client? Question 2: It would be helpful for our target URL, which is a JSON rest service, if it received the userid. I have a (possibly mistaken) belief that the authenticated username will be available to our JSON rest service. Andrew -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user
