Hi, The OAuth support in CAS 3.5.2 is based on the Scribe-up library I developed on my own. In fact, I have replaced it with pac4j : https://github.com/leleuj/pac4j, a new library targeting OAuth protocol, but also CAS, OpenID protocols...
Is it stable ? I hope so. I'm willing to fix any bug or add any improvment if some problem is proven. As it relies strongly on Facebook, Google or any other OAuth provider, you may encounter some problems when these providers are too slow. Connect and read timeouts can be defined for every provider : they all inherit from https://github.com/leleuj/pac4j/blob/1.3.x/src/main/java/org/scribe/up/provider/BaseOAuthProvider.java . I recommend you use the last version of the library which is the 1.3.1 (instead of the 1.2.0 which is defined by default with CAS server 3.5.2). If a CAS server version 3.5.3 is to be released, I'll be glad to change that default version of the dependency. As a github project, you can open an issue in the pac4j project if you have any concern about scribe-up. People generally contact me directly if they have any question but I appreciate the suggestion, I just created 2 Google groups regarding pac4j / scribe-up : - https://groups.google.com/forum/?fromgroups#!forum/pac4j-users - https://groups.google.com/forum/?fromgroups#!forum/pac4j-dev. Best regards, Jérôme 2013/8/26 Rohit Kotecha <[email protected]> > Hi Team,**** > > ** ** > > I am trying to integrated CAS 3.5.2 with our spring security based web > application.**** > > and I have also implemented facebook and google + login.**** > > ** ** > > And it's behaving very randomly. So just want to check is there some live > sites who use CAS with social media login? **** > > CAS 3.5.2 with Oauth client support is really stable??**** > > ** ** > > If some times facebook or google+'s response is delay by a second or so > after submitting credential how CAS will take care of it?**** > > is there somewhere timeout/wait timeout parameter we need to configure in > CAS in such cases?**** > > ** ** > > And CAS is using org.scribe.up libraby for Oauth authentication. where I > can find forum for the same? or it's developed by CAS team only?**** > > ** ** > > Thanks and Regards,**** > > Rohit Kotecha**** > > -- > You are currently subscribed to [email protected] as: [email protected] > To unsubscribe, change settings or access archives, see > http://www.ja-sig.org/wiki/display/JSG/cas-user > > -**************Nihilent*************** > " *** All information contained in this communication is confidential, > proprietary, privileged > and is intended for the addressees only. If youhave received this E-mail in > error please notify > mail administrator by telephone on +91-20-39846100 or E-mail the sender by > replying to > this message, and then delete this E-mail and other copies of it from your > computer system. > Any unauthorized dissemination,publication, transfer or use of the contents > of this communication, > with or without modifications is punishable under the relevant law. > > Nihilent has scanned this mail with current virus checking technologies. > However, Nihilent makes no > representations or warranties to the effect that this communication is > virus-free. > > Nihilent reserves the right to monitor all E-mail communications through its > Corporate Network. *** " > > *************************************************************************- > > -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user
