Re: CAS in multi-domain DNS

[Adam Rybicki]

Hi, There is obviously something wrong if you are forced to authenticate more than once.  However, CAS should not be affected by domain names.  Did you change anything in the configuration of the ticketGrantingTicketCookieGenerator bean in cas-servlet.xml? The default configuration causes the browser to send the TGC only to the same server where it got the cookie.  This sounds like the the option you should be using.  If the TGC is not sent to CAS on subsequent service authentication requests, what could be invalidating or removing that cookie? Adam Yannick Quenec'hdu wrote: Hi, I would know, if I can use CAS in an environment multi-domain (DNS) ? My architecture is as follows, I have a CAS which protects two services, each service is in a different domain DNS. To each time, I pass from a service towards the other, I must negotiate my TGC again. Thus to authenticate me once again, awkward for a SSO… This problem provide by brower, who manages one cookie by domain, not possibile to mange a multi-domain cookie. Somebody know a solution to resolv this ? Regards. _______________________________________________ Yale CAS mailing list cas@tp.its.yale.edu http://tp.its.yale.edu/mailman/listinfo/cas

begin:vcard
fn:Adam Rybicki
n:Rybicki;Adam
org:Unicon, Inc.;Professional Services
adr:Suite 113;;3140 North Arizona Avenue;Chandler;AZ;85225;United States
email;internet:[EMAIL PROTECTED]
tel;work:+1-480-558-2400
tel;home:+1-310-265-8286
tel;cell:+1-310-980-2758
x-mozilla-html:FALSE
url:http://www.unicon.net/
version:2.1
end:vcard

smime.p7s
Description: S/MIME Cryptographic Signature

_______________________________________________
Yale CAS mailing list
cas@tp.its.yale.edu
http://tp.its.yale.edu/mailman/listinfo/cas