Yes, we've had it in production for almost a year with a Grails app generating the token and it's worked really well.
-Eric -- Eric Pierce Identity Management Architect Information Technology University of South Florida (813) 974-8868 -- [email protected] ________________________________ From: Scott Battaglia [[email protected]] Sent: Wednesday, June 19, 2013 1:13 PM To: [email protected] Subject: Re: re:[cas-user] CAS auto login after sign up with Spring security based web application This looks awesome. Are you guys running this in production? On Wed, Jun 19, 2013 at 12:13 PM, Pierce, Eric <[email protected]<mailto:[email protected]>> wrote: I have a CAS server extension on Github (https://github.com/epierce/cas-server-extension-token) for authenticating a user based on an encrypted JSON object that includes the username and a few attributes (name, email). Once the extension is installed and configured, your registration app can generate the encrypted JSON and pass it as the 'auth_token' parameter to the CAS server. The extension will authenticate the user by decrypting the token and verifying the data it contains. -- Eric Pierce Identity Management Architect Information Technology University of South Florida (813) 974-8868<tel:%28813%29%20974-8868> -- [email protected]<mailto:[email protected]> ________________________________________ From: jleleu [[email protected]<mailto:[email protected]>] Sent: Wednesday, June 19, 2013 6:55 AM To: [email protected]<mailto:[email protected]> Subject: re:[cas-user] CAS auto login after sign up with Spring security based web application Hi, The "auto-login" is not an easy subject because you need to retrieve a real SSO identity without entering credentials. In this case, I would think about a solution based on a token, exchanged between the application and the CAS server to perform authentication and respresenting a user. Best regards, Jérôme -- You are currently subscribed to [email protected]<mailto:[email protected]> as: [email protected]<mailto:[email protected]> To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user -- You are currently subscribed to [email protected]<mailto:[email protected]> as: [email protected]<mailto:[email protected]> To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user
