CAS OpenID log in fails

[Sudirikku Mohanjith]

Hi,
I have setup the CAS services registry and when a external service
tries to sign in via CAS as the OpenID idp, CAS complains that the
"Application Not Authorized to Use CAS". It shouldn't be the case with
OpenID, any Application/Service should be allowed to authenticate
against CAS if using OpenID.

I think it is caused by the following in login-webflow.xml

        <action-state id="openIdSingleSignOnAction">
                <action bean="openIdSingleSignOnAction" />
                <transition on="success" to="sendTicketGrantingTicket" />
                <transition on="error" to="viewLoginForm" />
                <transition on="warn" to="warn" />
        </action-state>

I do not think on success the flow should be to
sendTicketGrantingTicket, instead it should be some OpenID specific
transition.

It would be nice to have OpenID idp support, I'm in the process of
deploying CAS for a major developer portal. So far the things have
been smooth. Drupal, Confluence and JIRA will be using CAS to
authenticate against. I want to give all the users in the developer
portal OpenID endpoints, right now I'm making use of home brewed
Drupal module. To my disappointment external services are not able to
authenticate via the CAS OpenID idp. :(

Hope some one can help me.

Cheers,
Mohanjith