Followup on our final approach: we bit the bullet and had the java client negotiate all the redirects following the normal user/browser login flow. The only improvement was to a querystring param to allow M2M connections to skip a User Consent to Monitoring page we have in the webflow.
For java users, note that the built in HttpsURLConnection and URL classes are a pain to work with and that we ended up going with Apache httpclient (v4.2.1) which worked much better with minimum setup. -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user
