Dick, Assuming this is addressed to me because I recall ranting on this issue once or twice, my old group has a fairly well integrated setup where Apache HTTPD provides authentication against the Windows domain controller using mod_kerberos and then passes the appropriate headers on the applications sitting behind it, which are fairly heterogenous in their infrastructure (Tomcat, Jetty, mod_wsgi, Phusion Passenger, PHP). Being able to play nicely in that setup was an important requirement. It's so hard to get people to try something new, and not making them type in a username and password provides a alleviates a surprising amount of resistance.
But a little over a year ago I became fed up with the politics in enterprise systems, especially those with a Web 2.0 nature, and made a fairly extreme horizontal career move. So while I have great respect for what's been achieved so far with ESME and continue to watch the project, my interest is almost purely academic. Regards, Erik On Fri, Jan 14, 2011 at 3:17 AM, Richard Hirsch <[email protected]>wrote: > @Eric - saw that you are integrating CAS into your environment. You > may interested in this ESME JIRA item "Add container-based > authentication" > > D. > > [1] https://issues.apache.org/jira/browse/ESME-214 >
