Hi, I'm investigating the effort needed to make a client-server-based system aware of CAS. The client(s) are written in JAVA (run as applets) and the server is written in C (communication is done via RMI). The given situation closely resembles the one described in the "Handling non-web services" section of the CAS architecture documentation as the client "normally" tries to authenticate users against the server back-end system. Client and server can be configured to use Kerberos for authentication thus the concept of using tickets for authentication is known to the application.
As far as I understood the documentation the client must obtain a service ticket and "forward" this ticket to the back-end server for validation. Now the server's authentication mechanism must be extended to validate the CAS tickets against the respective CAS server. As the server is written in C this immediately raises the question if there are already existing C libraries providing CAS ticket validation functionality. Is my understanding of handling non-web services correct so far? And are there existing C implementations that can be used to validate CAS tickets? Best regards, Daniel. -- Ist Ihr Browser Vista-kompatibel? Jetzt die neuesten Browser-Versionen downloaden: http://www.gmx.net/de/go/browser _______________________________________________ Yale CAS mailing list [email protected] http://tp.its.yale.edu/mailman/listinfo/cas
