[
https://issues.apache.org/jira/browse/OFBIZ-6963?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15763483#comment-15763483
]
james yong commented on OFBIZ-6963:
-----------------------------------
As OFBiz is using gradle built system, I used the WAR Overlay approach to add
the CAS SSO Server as a new component. However there are errors related to the
tag library when using the new component.
There are also other tag related errors, when running CAS SSO Server on recent
pre-gradle OFBiz versions.
Running CAS SSO Server directly under Tomcat works fine though.
I decided not to continue with this JIRA due to the above mentioned problem.
Since Jetty was dropped from OFBiz and only embedded Tomcat is used as the
servlet container, I would like to suggest using Tomcat SSO instead.
> Single sign-on to OFBiz with CAS
> --------------------------------
>
> Key: OFBIZ-6963
> URL: https://issues.apache.org/jira/browse/OFBIZ-6963
> Project: OFBiz
> Issue Type: Improvement
> Components: ALL APPLICATIONS
> Affects Versions: Trunk
> Reporter: james yong
>
> OFBiz is made up of several web applications.
> To allow the user to sign in only once, a unique token value is presented for
> verification each time the user navigates to an unvisited web application.
> This approach has the following limitations:
> 1) You cannot work with multiple windows, as there is only 1 valid token
> value at any time and other token values will be invalid in older-opened
> windows.
> 2) There is a need to refresh the whole page, so that all links will contain
> the valid token value.
> 3) Not easy to compose a page that get contents from different web
> applications in OFBiz
> Adding CAS SSO component as a core into OFBiz will remove the limitations
> mentioned above.
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
