Hi, The original authentication would be fine.
I understand your thoughts, my preference would be for the us to provide an attribute to the client which they can then use on their end to grant access to their application once the user has passed authentication. Our supervisors wanted to explore this option, they would like to have a separate OU in ldap which contains the users that are allowed to access the specific url and then have CAS look at the OU. We thought of adding an additional authentication handler but since CAS checks the authentication handlers in order we would run into the issue of duplicate entries in LDAP. That is why we thought of the trying to implement the BaseUrlAuthenticationManagerImpl or ServiceUrlAuthenticationManagerimpl to avoid running into that issue. ___________________ Juan Quintanilla UTS - Enterprise Group 305-348-6573 [email protected]<mailto:[email protected]> ________________________________ From: Scott Battaglia <[email protected]> Sent: Friday, August 30, 2013 9:23 AM To: [email protected] Subject: Re: [cas-user] Question about implementing registerd url based authentication If I am reading your question correctly, that normally doesn't make sense in a centralized environment. What happens when the user comes back to CAS from a different service? Is the original authentication okay or do they need to re-authenticate? On Fri, Aug 30, 2013 at 8:25 AM, Juan Quintanilla <[email protected]<mailto:[email protected]>> wrote: Hi, We currently run CAS sso version 3.4.7 with an oracle database for the registered urls and an ldap backend for authentication. We wanted to know if anyone has implemented BaseUrlAuthenticationManagerImpl or ServiceUrlAuthenticationManagerimpl in order use a different authentication for a registered url? If so is there any documentation on how to implement it? Thanks! ___________________ Juan Quintanilla [email protected]<mailto:[email protected]> -- You are currently subscribed to [email protected]<mailto:[email protected]> as: [email protected]<mailto:[email protected]> To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user
