As per the specification, you can only use a Service Ticket once. If you have logged in to Application A, and need to authentication to application B via A, then you should have application A request a Proxy Ticket for Application B.
Please see the documentation on the specific CAS clients you are using on how to do that. -Scott On Nov 27, 2007 3:33 AM, Juan Huerta <[EMAIL PROTECTED]> wrote: > Hi, > > Im trying to pass the ticket/service to a web service. > > This web service, will call validateService or proxyValidate, expecting to > get the user name > > However, Im always getting: ticket > 'ST-3301-pq9Ron9TbuKayJHBclTZih6VkiARgfpndgZ-20' not recognized > > Examples: > (the ticket im passing is a result of logging in with other application, > single sign on) > > > https://casauthenticator:8443/cas/validateService?ticket=ST-3301-pq9Ron9TbuKayJHBclTZih6VkiARgfpndgZ-20&service=http://localhost/dp2/default.aspx > https://casauthenticator:8443/cas/proxyValidate?ticket=ST-3301-pq9Ron9TbuKayJHBclTZih6VkiARgfpndgZ-20&service=http://localhost/dp2/default.aspx > > > On the other hand , I read that in the list that > (link<http://www.nabble.com/forum/ViewPost.jtp?post=13271563&framed=y>): > "Once a ticket is used/validated, it is no longer recognized by CAS". > > My question is ... should i be able to retrieve over and over the username > making that kinda calls? > > thanks a lot, > > Juan > > 2007/11/27, Juan Huerta < [EMAIL PROTECTED]>: > > > Hi, > > > > I want to implement Web Service Security (.Net) in a system where the > > user previously has logged in using CAS. > > > > - I would like to know if given the username, there is a way to retrieve > > the token/ticket given to that username. > > - If this is not possible, what info can be retrieved given username? > > Or the other way around, could i retrieve username given ticket? How to > > validate if a user is logged in? > > - Any tip on securing .Net Web Services using CAS? > > > > I guess this questions has been already posted in the email list ... > > anyway to browse/search the emails posted? > > > > thanks, > > > > Juan > > > > > > _______________________________________________ > Yale CAS mailing list > [email protected] > http://tp.its.yale.edu/mailman/listinfo/cas > > -- -Scott Battaglia LinkedIn: http://www.linkedin.com/in/scottbattaglia
_______________________________________________ Yale CAS mailing list [email protected] http://tp.its.yale.edu/mailman/listinfo/cas
