Can I use SAML in CAS to avoid cookies?
Thanks and Regards, Dheeraj Dubey ----- Original Message ----- From: "Robert Oschwald" <[email protected]> To: [email protected] Sent: Tuesday, September 9, 2014 5:13:05 PM Subject: Re: [cas-user] SSO approach without Cookies Not that I’m aware of one. Am 09.09.2014 um 13:19 schrieb Dheeraj Dubey < [email protected] >: Many thanks rob for your help. Is there any opensource tool which provides Claim bases SSO for Java web application? Dheeraj ----- Original Message ----- From: "Jay" < [email protected] > To: [email protected] Sent: Tuesday, September 9, 2014 4:34:28 PM Subject: Re: [cas-user] SSO approach without Cookies Would there be any problem if some one deletes these cookies or hack it ? Any precautions to be taken ? On Tue, Sep 9, 2014 at 12:00 PM, Robert Oschwald < [email protected] > wrote: <blockquote> Authentication itself works without, but that is of no help for you, as JASIG-CAS needs Cookies for SSO. Maybe another approach would fit your needs, like Claims-Based SSO. E.g. Windows Identity Foundation. It has it’s drawbacks and conceptual limitations. See http://msdn.microsoft.com/en-us/library/ff359102.aspx Rob Am 09.09.2014 um 12:36 schrieb Dheeraj Dubey < [email protected] >: <blockquote> Hi All, I am new to CAS and trying to develop web application suite. Single sign on is on of my requirement. I am trying to deploy CAS 4.0 on my tomcat to achieve SSO. As far as I know that CAS uses TGT and it's cookie base method for authentication. But as per my requirement system should not store any type of cookies on client machine. Kindly help me to identify any method which help me achieve above requirement. I would be highly obliged and thankful if anyone help me by replying my mail. Thanks and Regards, Dheeraj Dubey -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user </blockquote> -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user </blockquote> -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user
