Hi I'm using CAS for authentication and I'm able to integrate Shiro with CAS using shiro-cas. it works fine through browser when i'm trying a rest resource, the shiro filter is setup to use CAS realm and it redirects to CAS login page and authentication happens fine. But We need to allow client applications to programmatically get the service ticket by talking to CAS REST services and pass the service ticket as part of the URL. Client applications will have their own login page to receive credentials that are passed to CAS to get the "Ticket Granting Ticket" and "Service ticket". In this case, Shiro should not redirect to CAS login. Instead, it should just use cas client to do the authentication with service ticket passed (Probably just the Service ticket validation) and let the call through. But shiro is still redirecting to login page. Am I missing something? This works fine if i don't use shiro and use CAS filters directly in web.xml.
Thanks Venkat Here's the shiro.ini [main] casFilter = org.apache.shiro.cas.CasFilter casFilter.failureUrl = /error.jsp casRealm = org.apache.shiro.cas.CasRealm casRealm.defaultRoles = ROLE_USER casRealm.casServerUrlPrefix = https://localhost:8443/cas casRealm.casService = https://localhost:8443/fm/shiro-cas casSubjectFactory = org.apache.shiro.cas.CasSubjectFactory securityManager.subjectFactory = $casSubjectFactory roles.loginUrl = https://localhost:8443/cas/login?service=https://localhost:8443/fm/shiro-cas [urls] /shiro-cas = casFilter /* = roles[ROLE_USER] /** = anon -- View this message in context: http://shiro-user.582556.n2.nabble.com/shiro-cas-tp7578535.html Sent from the Shiro User mailing list archive at Nabble.com.
