CAS credentials, ticker and several application with differenc access rights
Scott Battaglia
scott.battaglia at gmail.com
Tue Apr 24 08:09:25 EDT 2007
Matteo,
There are some issues with this if you would like to participate in single
sign on. An Authentication request is done to create a Single Sign On
session, not for each individual application that uses CAS. You would need
to build authorization into CAS at the time a Service Ticket is granted.
-Scott
On 4/23/07, Matteo Matteo <matteo at inbox.ru> wrote:
>
> An idea:
> We would like to use an application name in our credentials and according
> to this name we should check if our user has an access to an application. If
> yes - give him a granting ticket, if not - show an error page.
> What should I configure/change to be able to check if our user has an
> access when he's getting his granting ticket?
> It should work like
> We have 3 applications.
> 1. User loggs in into an application where he is granted.
> 2. He tries to go to the second or the third application but without
> success (CAS system does not authorize him there automatically, because he
> has no access to these applications)
> Thanks
> Matvey
> _______________________________________________
> Yale CAS mailing list
> cas at tp.its.yale.edu
> http://tp.its.yale.edu/mailman/listinfo/cas
>
--
-Scott Battaglia
LinkedIn: http://www.linkedin.com/in/scottbattaglia
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://tp.its.yale.edu/pipermail/cas/attachments/20070424/eeeaf2b4/attachment.html
More information about the cas
mailing list