Hi Jan and Sven, To my knowledge, CAS is mainly used in for uPortal wich is "the leading open source enterprise portal framework built by and for the higher education community", see http://www.jasig.org/uportal In France, there's a system called ESUP [1], an "Environnement Numérique de Travail" (don(t know the english equivalent). To me it's no more than a portal for web applications with rights/customization according to UNI profile (student, professors, researchers, ...).
I hate ESUP, it's full Java and XML, looks old to me and not ergonomic. It's Open source but cost a lot to deploy and maintain... We don't have setup this system yet in our Uni but there is already the SSO part, (Java CAS server) wich does the job... I also noticed in some other UNI that they don't always use ESUP but CAS is their SSO... If I had a Pharo client, I could prototype quicker a "ENT like" so I can show IT people that ESUP is far from necessary ! Porting such client in ST seems not possible in a reasonnable time for me and the outcomes are not guaranteed (also time is missing)... I actually do it now in PHP :( I also think that doing an ENT in Pharo/Smalltalk could be a nice opportunity for web companies to sell such products to UNI... FYI, the installation of ESUP + "cassification" of some apps that integrates this portal is sol between 25 and 35k€ ! To sum up, I think having a CAS client would be nice only if a company plan to make and sell ENT like system (ObjectFusion, beta9, Inceptive, agilistic...). I caon't really ask for prototype needs... Cheers, Cédrick [1] ESUP exemples: https://www.google.fr/#hl=en&tbo=d&output=search&sclient=psy-ab&q=ent&oq=ent&gs_l=hp.3..0l4.1147.1523.0.1642.3.3.0.0.0.1.444.665.1j1j4-1.3.0.les%3B..0.0...1c.1.GM3LRsbfzk4&pbx=1&bav=on.2,or.r_gc.r_pw.r_qf.&bvm=bv.1357700187,d.d2k&fp=f15e9a7982de076e&biw=983&bih=640 [2] some cas clients: http://www.jasig.org/cas/client-integration [3] ruby version, rubycas : https://github.com/rubycas code.google.com/p/rubycas-server/ code.google.com/p/rubycas-client/ [4] CAS centralize authentification, is cross domain, OpenID decentralizes authentification http://stackoverflow.com/questions/2033026/sso-with-cas-or-oauth/3181557#3181557 [5] ENT on french wikipedia... http://fr.wikipedia.org/wiki/Espace_numérique_de_travail > I'm not familiar with CAS and I don't know where it is used. Currently > Zinc-SSO only implements the client/consumer side of the different protocols. > Are you just looking for a client side implementation of CAS in Smalltalk or > also the " identity provider" side? It would be only the client side. > > Jan. > > > > > > Any chance for a CAS implementation ? > > (http://www.jasig.org/cas/client-integration). > > I guess not because it's very different (and complex) compared to OAuth and > > OpenID, but I ask to have a confirmation :) > > I looked at CAS many years ago. From what I remember it is comparable in > complexity to OAuth1 and OpenID (OAuth2 is simpler). Jan is the expert, maybe > he has more to say about this. > > In any case, as always, it is a question about resources. > > Is CAS used a lot ? Are there public reference providers to work against ? Provider is mainly the java server... I don't know a public one, I have credentials for my uni server and I can eventually give my credentials to try... I've already asked for demo account to the IT staff and they refused ! > > Regards, > > Sven > > PS: Remember our DropBox experiments from so long ago ? I might try using > Zinc-SSO to do it, provided I find some time ;-) remember too... sad I stopped since we lost last versions... still time is missing... I just wish I could do some Smalltalk again ! ;) See you soon, Cédrick > > > Thanks anyway for the good work. > > > > Cédrick > > > > > > > > > > Le 9 janv. 2013 à 09:46, Sven Van Caekenberghe <[email protected]> a écrit : > > > >> Hi, > >> > >> Here is another update regarding the Zinc-SSO project. > >> > >> > >> http://lists.gforge.inria.fr/pipermail/pharo-project/2012-December/072658.html > >> > >> Jan has been porting his earlier CloudforkSSO work to Zinc-SSO so that we > >> now have support for both OAuth1 and OpenID. Both are considerably more > >> complex than OAuth2 that was implemented earlier. The codebase was cleaned > >> up a bit and more test/demo code was added. > >> > >> Some basic documentation and loading instructions can be found at > >> > >> https://github.com/svenvc/docs/blob/master/zinc/zinc-sso-paper.md > >> > >> Basically you should be able to get all the bits (preferably in Pharo 2.0) > >> by doing > >> > >> (ConfigurationOfZincHTTPComponents project version: '2.2') load: 'SSO' > >> > >> This is not a subject where loading some code gives you a working demo > >> since there is some setup to be done. Therefor we orginanized two live > >> demos: > >> > >> http://sso.stfx.eu > >> http://sso.doit.st > >> > >> There is now support for Google, Microsoft, Facebook, Twitter & Yahoo. The > >> second demo is slight more extensive: it even allows you to do Twitter > >> posts ! > >> > >> Although the code is not yet production quality, we could use some > >> feedback from early adopters to help use shake out remaining problems. > >> > >> Jan & Sven > >> > >> PS: We would like to thank Andy Burnett of Knowinnovation Inc and ESUG for > >> sponsoring this open source work. > >> > >> -- > >> Sven Van Caekenberghe > >> http://stfx.eu > >> Smalltalk is the Red Pill > >> > > > > >
