CAS with non-browser clients
Jason Shao
jayshao at rutgers.edu
Thu Jun 7 10:19:50 EDT 2007
On Jun 6, 2007, at 5:55 AM, Paul Harrison wrote:
> resources protected by CAS I can only think of two options when
> working out when a username/password needs to be sent.
>
> 1. hard code the location of the CAS login page into the application
> and use that to recognise when to send the credentials
> 2. parse any html pages that are returned looking for a form with
> <input type="password" />
If you have access to the user's credentials the right way to do this
is probably to make a webservices call to CAS, get a ServiceTicket,
and pass that along with the resource request to the CAS protected
resource.
Jason
--
Jason Shao
Application Developer
Rutgers University, Office of Instructional & Research Technology
v. 732-445-8726 | f. 732-445-5539 | jayshao at rutgers.edu | http://
jay.shao.org
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://tp.its.yale.edu/pipermail/cas/attachments/20070607/e714ea5b/attachment.html
More information about the cas
mailing list