I am not using SSL or HTTPS. I am using HTTP.
_____ From: Thanh-Long HUYNH [mailto:[email protected]] Sent: Thursday, January 15, 2009 3:21 PM To: [email protected]; Yale CAS mailing list Subject: Re: Query: Java CAS client Do you request CAS through HTTPS or SSL ? 2009/1/15 Smita Raut <[email protected]> Hello, I have installed CAS server and I am using Java CAS client library to access CAS server from my Java web application. I have configured web.xm to apply CAS filter to all the requests coming to my web application. This whole set up works fine. It redirects the user to CAS login page for the first time and after successful authentication it redirects it to the service URL (page from my web application). But according to my knowledge, on the second request from the same browser, CAS client should see that ticket is present and should send a request to CAS server to validate the ticket using validate URL provided. But it doesn't. I opened up CAFiler.java file and saw the implementation. It seems client first checks if session contains an attribute- "edu.yale.its.tp.cas.client.filter.user". If this attribute is present it stops and returns. It doesn't send the ticket for validation. Please tell me if I am missing something or this is the right behavior. Please revert back asap. Thanks, Smita Raut _____________________________________________________________________ This e-mail message may contain proprietary, confidential or legally privileged information for the sole use of the person or entity to whom this message was originally addressed. Any review, e-transmission dissemination or other use of or taking of any action in reliance upon this information by persons or entities other than the intended recipient is prohibited. If you have received this e-mail in error kindly delete this e-mail from your records. If it appears that this mail has been forwarded to you without proper authority, please notify us immediately at [email protected] and delete this mail. _____________________________________________________________________ _______________________________________________ Yale CAS mailing list [email protected] http://tp.its.yale.edu/mailman/listinfo/cas _____________________________________________________________________ This e-mail message may contain proprietary, confidential or legally privileged information for the sole use of the person or entity to whom this message was originally addressed. Any review, e-transmission dissemination or other use of or taking of any action in reliance upon this information by persons or entities other than the intended recipient is prohibited. If you have received this e-mail in error kindly delete this e-mail from your records. If it appears that this mail has been forwarded to you without proper authority, please notify us immediately at [email protected] and delete this mail. _____________________________________________________________________
_______________________________________________ Yale CAS mailing list [email protected] http://tp.its.yale.edu/mailman/listinfo/cas
