Jerome, Thanks for your reply. My requirements are actually not SSO, every application will have its own set of users. We just want to administer it centrally so that security is standard for all application from the support perspective.
I'll take a look at Jasig Cas though, as I am not familiar with it - thanks for the pointer. I was also considering LDAP-supported directory. Jean On Tue, Apr 3, 2012 at 3:12 AM, jleleu <[email protected]> wrote: > Hi Jean, > > I'm not sure of what you're looking for exactly, but building a centralized > authentication / authorization service seems to me a hard work. > I would recommend using a SSO solution like CAS, which is pretty easy to > use and install : http://www.jasig.org/cas. > I created a module to support CAS in Shiro : > http://shiro.apache.org/cas.html, this way, you could bind your > applications to this centralized system. > Best regards, > Jérôme > > > > 2012/4/3 Jean Barmash 1 [via Shiro User] < > [email protected]> > > > Have people tried to build on top of Shiro a centralized authentication / > > authorization service? The architecture doc seems to suggest that's an > > expected use case. Are there already bindings that provide HTTP API over > > Shiro? I'd like to have a centralized server that can manage > authorization > > / authentication / session management for multiple different > applications. > > > > If no bindings exist, any potential issues to watch out for using Shiro > > over HTTP? I am very much concerned about performance with the http > > overhead. > > > > Thanks, > > > > Jean > > > > ------------------------------ > > If you reply to this email, your message will be added to the discussion > > below: > > > > > http://shiro-user.582556.n2.nabble.com/Authentication-Authorization-as-a-Service-tp7431577p7431577.html > > To start a new topic under Shiro User, email > > [email protected] > > To unsubscribe from Shiro User, click here< > http://shiro-user.582556.n2.nabble.com/template/NamlServlet.jtp?macro=unsubscribe_by_code&node=582556&code=bGVsZXVqQGdtYWlsLmNvbXw1ODI1NTZ8LTExNzY2MzcxMTY= > > > > . > > NAML< > http://shiro-user.582556.n2.nabble.com/template/NamlServlet.jtp?macro=macro_viewer&id=instant_html%21nabble%3Aemail.naml&base=nabble.naml.namespaces.BasicNamespace-nabble.view.web.template.NabbleNamespace-nabble.view.web.template.NodeNamespace&breadcrumbs=notify_subscribers%21nabble%3Aemail.naml-instant_emails%21nabble%3Aemail.naml-send_instant_email%21nabble%3Aemail.naml > > > > > > > -- > View this message in context: > http://shiro-user.582556.n2.nabble.com/Authentication-Authorization-as-a-Service-tp7431577p7432015.html > Sent from the Shiro User mailing list archive at Nabble.com. >
