Can't we use this process: http://www.ja-sig.org/wiki/display/CAS/Using+CAS+without+the+CAS+login+screen
This is pretty much what were are trying to do. Jason Roscoe Systems Engineer II Rite Aid Corporation (717) 761-2633 ext. 5581 [EMAIL PROTECTED] ________________________________ From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Scott Battaglia Sent: Friday, August 15, 2008 9:45 AM To: Yale CAS mailing list Subject: Re: Error validating ticket You should never use the CAS Cookie token for anything (in theory you shouldn't access it at all ;-)). You can only validate Service Tickets using the validate methods. Any reason why you can't use the CAS login page? If you have to collect the username/password and pass it to CAS (which we don't recommend) you have a couple options. You can use the login form as part of an iframe (which I think is detailed in our wiki) or look at the new RESTful API. -Scott On Fri, Aug 15, 2008 at 9:25 AM, Jason Roscoe <[EMAIL PROTECTED]<mailto:[EMAIL PROTECTED]>> wrote: Here is what we are trying to accomplish. We have our own login screen that is invoking the cas/login method. We are sending an HTTP get request to the default CAS login page, retrieving the lt token, and then sending an HTTP post request to CAS with the username/password/lt in the body of the post. We wrote our own Authentication handler and implemented it into cas as a jar. We are successfully authenticating, and then getting the CASTGC value and setting that as our token. I'm thinking this is not the correct value for our validation token that we want to use for SSO, right? We are not sending a "service" parameter to the /cas/login url, as we just want to get the validated token and continue with our login process code. If you need any code we are using, I can certainly supply that. We are currently using IBM WAS 6.1 and using j_security_check, but need to switch to CAS for SSO. Thanks for your help!! ________________________________ From: [EMAIL PROTECTED]<mailto:[EMAIL PROTECTED]> [mailto:[EMAIL PROTECTED]<mailto:[EMAIL PROTECTED]>] On Behalf Of Scott Battaglia Sent: Friday, August 15, 2008 9:07 AM To: Yale CAS mailing list Subject: Re: Error validating ticket Are you trying to validate a TicketGrantingTicket? If so how did your application get access to that TGT? -Scott On Fri, Aug 15, 2008 at 8:38 AM, Jason Roscoe <[EMAIL PROTECTED]<mailto:[EMAIL PROTECTED]>> wrote: I am trying to use the serviceValidate method to validate a cas ticket, but I get this error: Error 500: Request processing failed; nested exception is java.lang.ClassCastException: Ticket [TGT-11-j45Ct4n0q1vPyG3oF5FflbWYMjONJxeW6WjDz6Ub6tc3EUq5z9-cas is of type class org.jasig.cas.ticket.TicketGrantingTicketImpl when we were expecting interface org.jasig.cas.ticket.ServiceTicket How can I fix this? Thanks ________________________________ Disclaimer: This e-mail message is intended only for the personal use of the recipient(s) named above. If you are not an intended recipient, you may not review, copy or distribute this message. If you have received this communication in error, please notify us immediately by e-mail and delete the original message. This e-mail expresses views only of the sender, which are not to be attributed to Rite Aid Corporation and may not be copied or distributed without this statement. _______________________________________________ Yale CAS mailing list [email protected]<mailto:[email protected]> http://tp.its.yale.edu/mailman/listinfo/cas ________________________________ Disclaimer: This e-mail message is intended only for the personal use of the recipient(s) named above. If you are not an intended recipient, you may not review, copy or distribute this message. If you have received this communication in error, please notify us immediately by e-mail and delete the original message. This e-mail expresses views only of the sender, which are not to be attributed to Rite Aid Corporation and may not be copied or distributed without this statement. _______________________________________________ Yale CAS mailing list [email protected]<mailto:[email protected]> http://tp.its.yale.edu/mailman/listinfo/cas ________________________________ Disclaimer: This e-mail message is intended only for the personal use of the recipient(s) named above. If you are not an intended recipient, you may not review, copy or distribute this message. If you have received this communication in error, please notify us immediately by e-mail and delete the original message. This e-mail expresses views only of the sender, which are not to be attributed to Rite Aid Corporation and may not be copied or distributed without this statement.
_______________________________________________ Yale CAS mailing list [email protected] http://tp.its.yale.edu/mailman/listinfo/cas
