Hi Team,
I found below solution on net to authenticate user by token for auto login
after registration.
//String oneTimeAuthToken =
this.userManager.generateOneTimeAuthToken(userEmail);
UsernamePasswordCredentials credentials = new
UsernamePasswordCredentials();
credentials.setUsername(userHeader.getUserEmail());
credentials.setPassword(password);
CentralAuthenticationServiceImpl centralAuthenticationServiceImpl = new
CentralAuthenticationServiceImpl();
String tgt =
centralAuthenticationServiceImpl.createTicketGrantingTicket(credentials);
CookieRetrievingCookieGenerator cookieRetrievingCookieGenerator = new
CookieRetrievingCookieGenerator();
cookieRetrievingCookieGenerator.addCookie(request, response, tgt);
but not sure this need to be done on client(application) side?
if on the client side we need to define all the dependancy bean for
CentralAuthenticationServiceImpl and tht
seems impossible in application side.
Please guide me.
Thanks and Regards,
Rohit Kotecha
-----Original Message-----
From: jleleu [mailto:[email protected]]
Sent: Wednesday, June 19, 2013 4:25 PM
To: [email protected]
Subject: re:[cas-user] CAS auto login after sign up with Spring security based
web application
Hi,
The "auto-login" is not an easy subject because you need to retrieve a real SSO
identity without entering credentials.
In this case, I would think about a solution based on a token, exchanged
between the application and the CAS server to perform authentication and
respresenting a user.
Best regards,
Jérôme
--
You are currently subscribed to [email protected] as:
[email protected] To unsubscribe, change settings or access archives,
see http://www.ja-sig.org/wiki/display/JSG/cas-user
-**************Nihilent***************
" *** All information contained in this communication is confidential,
proprietary, privileged
and is intended for the addressees only. If youhave received this E-mail in
error please notify
mail administrator by telephone on +91-20-39846100 or E-mail the sender by
replying to
this message, and then delete this E-mail and other copies of it from your
computer system.
Any unauthorized dissemination,publication, transfer or use of the contents of
this communication,
with or without modifications is punishable under the relevant law.
Nihilent has scanned this mail with current virus checking technologies.
However, Nihilent makes no
representations or warranties to the effect that this communication is
virus-free.
Nihilent reserves the right to monitor all E-mail communications through its
Corporate Network. *** "
*************************************************************************-
--
You are currently subscribed to [email protected] as:
[email protected]
To unsubscribe, change settings or access archives, see
http://www.ja-sig.org/wiki/display/JSG/cas-user
