I have a CAS server extension on Github (https://github.com/epierce/cas-server-extension-token) for authenticating a user based on an encrypted JSON object that includes the username and a few attributes (name, email).
Once the extension is installed and configured, your registration app can generate the encrypted JSON and pass it as the 'auth_token' parameter to the CAS server. The extension will authenticate the user by decrypting the token and verifying the data it contains. -- Eric Pierce Identity Management Architect Information Technology University of South Florida (813) 974-8868 -- [email protected] ________________________________________ From: jleleu [[email protected]] Sent: Wednesday, June 19, 2013 6:55 AM To: [email protected] Subject: re:[cas-user] CAS auto login after sign up with Spring security based web application Hi, The "auto-login" is not an easy subject because you need to retrieve a real SSO identity without entering credentials. In this case, I would think about a solution based on a token, exchanged between the application and the CAS server to perform authentication and respresenting a user. Best regards, Jérôme -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user
