Re: [cas-user] SSO approach without Cookies
Authentication itself works without, but that is of no help for you, as JASIG-CAS needs Cookies for SSO. Maybe another approach would fit your needs, like Claims-Based SSO. E.g. Windows Identity Foundation. It has it’s drawbacks and conceptual limitations. See http://msdn.microsoft.com/en-us/library/ff359102.aspx Rob Am 09.09.2014 um 12:36 schrieb Dheeraj Dubey dheeraj.du...@zensar.in: Hi All, I am new to CAS and trying to develop web application suite. Single sign on is on of my requirement. I am trying to deploy CAS 4.0 on my tomcat to achieve SSO. As far as I know that CAS uses TGT and it's cookie base method for authentication. But as per my requirement system should not store any type of cookies on client machine. Kindly help me to identify any method which help me achieve above requirement. I would be highly obliged and thankful if anyone help me by replying my mail. Thanks and Regards, Dheeraj Dubey -- You are currently subscribed to cas-user@lists.jasig.org as: robertoschw...@gmail.com To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user -- You are currently subscribed to cas-user@lists.jasig.org as: arch...@mail-archive.com To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user
Re: [cas-user] SSO approach without Cookies
Would there be any problem if some one deletes these cookies or hack it ? Any precautions to be taken ? On Tue, Sep 9, 2014 at 12:00 PM, Robert Oschwald robertoschw...@gmail.com wrote: Authentication itself works without, but that is of no help for you, as JASIG-CAS needs Cookies for SSO. Maybe another approach would fit your needs, like Claims-Based SSO. E.g. Windows Identity Foundation. It has it’s drawbacks and conceptual limitations. See http://msdn.microsoft.com/en-us/library/ff359102.aspx Rob Am 09.09.2014 um 12:36 schrieb Dheeraj Dubey dheeraj.du...@zensar.in: Hi All, I am new to CAS and trying to develop web application suite. Single sign on is on of my requirement. I am trying to deploy CAS 4.0 on my tomcat to achieve SSO. As far as I know that CAS uses TGT and it's cookie base method for authentication. But as per my requirement system should not store any type of cookies on client machine. Kindly help me to identify any method which help me achieve above requirement. I would be highly obliged and thankful if anyone help me by replying my mail. Thanks and Regards, Dheeraj Dubey -- You are currently subscribed to cas-user@lists.jasig.org as: robertoschw...@gmail.com To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user -- You are currently subscribed to cas-user@lists.jasig.org as: india@gmail.com To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user -- You are currently subscribed to cas-user@lists.jasig.org as: arch...@mail-archive.com To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user
Re: [cas-user] SSO approach without Cookies
Many thanks rob for your help. Is there any opensource tool which provides Claim bases SSO for Java web application? Dheeraj - Original Message - From: Jay india@gmail.com To: cas-user@lists.jasig.org Sent: Tuesday, September 9, 2014 4:34:28 PM Subject: Re: [cas-user] SSO approach without Cookies Would there be any problem if some one deletes these cookies or hack it ? Any precautions to be taken ? On Tue, Sep 9, 2014 at 12:00 PM, Robert Oschwald robertoschw...@gmail.com wrote: Authentication itself works without, but that is of no help for you, as JASIG-CAS needs Cookies for SSO. Maybe another approach would fit your needs, like Claims-Based SSO. E.g. Windows Identity Foundation. It has it’s drawbacks and conceptual limitations. See http://msdn.microsoft.com/en-us/library/ff359102.aspx Rob Am 09.09.2014 um 12:36 schrieb Dheeraj Dubey dheeraj.du...@zensar.in : blockquote Hi All, I am new to CAS and trying to develop web application suite. Single sign on is on of my requirement. I am trying to deploy CAS 4.0 on my tomcat to achieve SSO. As far as I know that CAS uses TGT and it's cookie base method for authentication. But as per my requirement system should not store any type of cookies on client machine. Kindly help me to identify any method which help me achieve above requirement. I would be highly obliged and thankful if anyone help me by replying my mail. Thanks and Regards, Dheeraj Dubey -- You are currently subscribed to cas-user@lists.jasig.org as: robertoschw...@gmail.com To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user -- You are currently subscribed to cas-user@lists.jasig.org as: india@gmail.com To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user /blockquote -- You are currently subscribed to cas-user@lists.jasig.org as: dheeraj.du...@zensar.in To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user -- You are currently subscribed to cas-user@lists.jasig.org as: arch...@mail-archive.com To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user
Re: [cas-user] SSO approach without Cookies
Not that I’m aware of one. Am 09.09.2014 um 13:19 schrieb Dheeraj Dubey dheeraj.du...@zensar.in: Many thanks rob for your help. Is there any opensource tool which provides Claim bases SSO for Java web application? Dheeraj From: Jay india@gmail.com To: cas-user@lists.jasig.org Sent: Tuesday, September 9, 2014 4:34:28 PM Subject: Re: [cas-user] SSO approach without Cookies Would there be any problem if some one deletes these cookies or hack it ? Any precautions to be taken ? On Tue, Sep 9, 2014 at 12:00 PM, Robert Oschwald robertoschw...@gmail.com wrote: Authentication itself works without, but that is of no help for you, as JASIG-CAS needs Cookies for SSO. Maybe another approach would fit your needs, like Claims-Based SSO. E.g. Windows Identity Foundation. It has it’s drawbacks and conceptual limitations. See http://msdn.microsoft.com/en-us/library/ff359102.aspx Rob Am 09.09.2014 um 12:36 schrieb Dheeraj Dubey dheeraj.du...@zensar.in: Hi All, I am new to CAS and trying to develop web application suite. Single sign on is on of my requirement. I am trying to deploy CAS 4.0 on my tomcat to achieve SSO. As far as I know that CAS uses TGT and it's cookie base method for authentication. But as per my requirement system should not store any type of cookies on client machine. Kindly help me to identify any method which help me achieve above requirement. I would be highly obliged and thankful if anyone help me by replying my mail. Thanks and Regards, Dheeraj Dubey -- You are currently subscribed to cas-user@lists.jasig.org as: robertoschw...@gmail.com To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user -- You are currently subscribed to cas-user@lists.jasig.org as: india@gmail.com To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user -- You are currently subscribed to cas-user@lists.jasig.org as: dheeraj.du...@zensar.in To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user -- You are currently subscribed to cas-user@lists.jasig.org as: robertoschw...@gmail.com To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user -- You are currently subscribed to cas-user@lists.jasig.org as: arch...@mail-archive.com To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user
Re: [cas-user] SSO approach without Cookies
Can I use SAML in CAS to avoid cookies? Thanks and Regards, Dheeraj Dubey - Original Message - From: Robert Oschwald robertoschw...@gmail.com To: cas-user@lists.jasig.org Sent: Tuesday, September 9, 2014 5:13:05 PM Subject: Re: [cas-user] SSO approach without Cookies Not that I’m aware of one. Am 09.09.2014 um 13:19 schrieb Dheeraj Dubey dheeraj.du...@zensar.in : Many thanks rob for your help. Is there any opensource tool which provides Claim bases SSO for Java web application? Dheeraj - Original Message - From: Jay india@gmail.com To: cas-user@lists.jasig.org Sent: Tuesday, September 9, 2014 4:34:28 PM Subject: Re: [cas-user] SSO approach without Cookies Would there be any problem if some one deletes these cookies or hack it ? Any precautions to be taken ? On Tue, Sep 9, 2014 at 12:00 PM, Robert Oschwald robertoschw...@gmail.com wrote: blockquote Authentication itself works without, but that is of no help for you, as JASIG-CAS needs Cookies for SSO. Maybe another approach would fit your needs, like Claims-Based SSO. E.g. Windows Identity Foundation. It has it’s drawbacks and conceptual limitations. See http://msdn.microsoft.com/en-us/library/ff359102.aspx Rob Am 09.09.2014 um 12:36 schrieb Dheeraj Dubey dheeraj.du...@zensar.in : blockquote Hi All, I am new to CAS and trying to develop web application suite. Single sign on is on of my requirement. I am trying to deploy CAS 4.0 on my tomcat to achieve SSO. As far as I know that CAS uses TGT and it's cookie base method for authentication. But as per my requirement system should not store any type of cookies on client machine. Kindly help me to identify any method which help me achieve above requirement. I would be highly obliged and thankful if anyone help me by replying my mail. Thanks and Regards, Dheeraj Dubey -- You are currently subscribed to cas-user@lists.jasig.org as: robertoschw...@gmail.com To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user -- You are currently subscribed to cas-user@lists.jasig.org as: india@gmail.com To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user /blockquote -- You are currently subscribed to cas-user@lists.jasig.org as: dheeraj.du...@zensar.in To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user -- You are currently subscribed to cas-user@lists.jasig.org as: robertoschw...@gmail.com To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user /blockquote -- You are currently subscribed to cas-user@lists.jasig.org as: dheeraj.du...@zensar.in To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user -- You are currently subscribed to cas-user@lists.jasig.org as: arch...@mail-archive.com To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user