There is no need to put a CAS filter in front of the third party web application, it is already protected by Siteminder. In fact this application will be accessed through our portal, so the portal can do the authentication to CAS requesting a proxy ticket. That proxy ticket should be received by Siteminder and validated through our CAS server which should give back the user id. All the communication between CAS and Siteminder should be SAML. Portal should send an SAML artifact to Siteminder, which should forward it to CAS. CAS should reply to Siteminder with an SAML Assertion containing the userId. But since CAS cannot reply with SAML Assertions, I'm not sure how to implement this. Any suggestions in that way are more than welcome.
Thank you folks, Lucas. On 2/27/07, Arnaud Lesueur <[EMAIL PROTECTED]> wrote: > >From my memory, there are 2 modes in Siteminder : > - an agent mode > - a reverse proxy mode > > If you are using the reverse proxy, you won't be able to put the CAS filter > on the top ... > > > > Arnaud Lesueur > > > > On 2/27/07, Scott Battaglia <[EMAIL PROTECTED]> wrote: > > I'm not sure how SiteMinder works but if its client applications retrieve > the user from the request.getRemoteUser then you can merely place the CAS > filters on top. > > > > -Scott > > > > > > > > On 2/27/07, Lucas Opara <[EMAIL PROTECTED]> wrote: > > > > > > Hello, > > > > > > I was wondering if someone had some experience in integrating a > Siteminder protected web application with CAS? > > > Our architecture is based on CAS authentication, and we would like to > integrate a third party webapp protected with Siteminder in our CAS > architecture. > > > > > > Lucas. > > > > > > _______________________________________________ > > > Yale CAS mailing list > > > [email protected] > > > http://tp.its.yale.edu/mailman/listinfo/cas > > > > > > > > > > > > _______________________________________________ > > Yale CAS mailing list > > [email protected] > > http://tp.its.yale.edu/mailman/listinfo/cas > > > > > > > _______________________________________________ > Yale CAS mailing list > [email protected] > http://tp.its.yale.edu/mailman/listinfo/cas > > _______________________________________________ Yale CAS mailing list [email protected] http://tp.its.yale.edu/mailman/listinfo/cas
