uPortal+CAS+Proxy

Scott Battaglia scott.battaglia at gmail.com
Tue Jul 22 13:14:02 EDT 2008 

Then you should be accessing everything over https://localhost:8443
On Tue, Jul 22, 2008 at 12:59 PM, Edward Chen <edwardc at wolfram.com> wrote:

> By the way, I keystroke the certificate and I do have the following in
> my tomcat server.xml
> ....
> <!-- Define a SSL HTTP/1.1 Connector on port 8443 -->
> <Connector port="8443" maxHttpHeaderSize="8192"
> maxThreads="150" minSpareThreads="25" maxSpareThreads="75"
> enableLookups="false" disableUploadTimeout="true"
> acceptCount="100" scheme="https" secure="true"
> clientAuth="false" sslProtocol="TLS"
> keystoreFile="C:/Documents and Settings/edwardc.WRI/.keystore"
> keystorePass="changeit"
> truststoreFile="C:/Program
> Files/Java/jdk1.6.0_04/jre/lib/security/cacerts" />
> ...
>
> Edward
>
>
> Scott Battaglia wrote:
> > The answer to my question then is NO, you're not running over HTTPS
> > and THUS your single sign on won't work.
> >
> > Configure your Tomcat or whichever container you are using to use HTTPS.
> >
> > -Scott
> >
> > -Scott Battaglia
> > PGP Public Key Id: 0x383733AA
> > LinkedIn: http://www.linkedin.com/in/scottbattaglia
> >
> > On Tue, Jul 22, 2008 at 12:23 PM, Edward Chen <edwardc at wolfram.com
> > <mailto:edwardc at wolfram.com>> wrote:
> >
> >     I don't quite understand your question. I open uportal
> >     http://localhost:8080/uPortal and I open my application
> >     http://localhost:8080/application
> >
> >     When I login to uPortal by CAS, it redirects me to
> >
> http://localhost:8080/cas/login?service=http://localhost:8080/uPortal/Login
> >
> >     When I open my application
> >     http://localhost:8080/Recruiting/test.jsp, it
> >     redirects me to
> >
> https://localhost:8443/cas/login?service=http%3A%2F%2localhost%3A8080%2FRecruiting%2Ftest.jsp
> >
> >     I open the above links can answer your question.
> >
> >
> >     Edward
> >
> >
> >
> >     Scott Battaglia wrote:
> >     > Are you running CAS and uPortal over HTTPS?  Otherwise CAS won't
> >     store
> >     > the cookie.
> >     >
> >     > -Scott
> >     >
> >     > -Scott Battaglia
> >     > PGP Public Key Id: 0x383733AA
> >     > LinkedIn: http://www.linkedin.com/in/scottbattaglia
> >     >
> >     > On Tue, Jul 22, 2008 at 11:41 AM, Edward Chen
> >     <edwardc at wolfram.com <mailto:edwardc at wolfram.com>
> >     > <mailto:edwardc at wolfram.com <mailto:edwardc at wolfram.com>>> wrote:
> >     >
> >     >     Hi,
> >     >
> >     >     I am still new to this area. Please help
> >     >
> >     >     I have uPortal(quick-start) installed and up and running
> >     >     configured with
> >     >     CAS 3.2 ( LDAP )
> >     >     I have one application up and running with CAS 3.2, and this
> >     >     application
> >     >     is not inside the uPortal
> >     >     Both uPortal and this application are in the same Tomcat
> >     server and
> >     >     using the same CAS in the same machine
> >     >
> >     >     The problem is
> >     >     I have to login twice by CAS to uPortal and the application.
> >     That
> >     >     means
> >     >     I login to uPortal by CAS, then when I open the application,
> >     the CAS
> >     >     login page popped up again and I have to login again
> >     >
> >     >     Now I want to know how to access the application without CAS
> >     login
> >     >     again
> >     >     after I login to uPortal or
> >     >     access the uPortal without CAS login again after I login to
> >     >     application
> >     >     *
> >     >     I know that proxying is generally used when one application
> >     wants to
> >     >     access another application ON BEHALF of the user. A typical use
> >     >     case for
> >     >     this is a portal (such as uPortal) attempting to access a
> >     >     application.*
> >     >
> >     >     I don't know how to apply proxying into my case and how to
> >     do a simple
> >     >     configuration.
> >     >
> >     >     Any advice?
> >     >
> >     >
> >     >     Edward
> >     >     _______________________________________________
> >     >     Yale CAS mailing list
> >     >     cas at tp.its.yale.edu <mailto:cas at tp.its.yale.edu>
> >     <mailto:cas at tp.its.yale.edu <mailto:cas at tp.its.yale.edu>>
> >     >     http://tp.its.yale.edu/mailman/listinfo/cas
> >     >
> >     >
> >     >
> >
> ------------------------------------------------------------------------
> >     >
> >     > _______________________________________________
> >     > Yale CAS mailing list
> >     > cas at tp.its.yale.edu <mailto:cas at tp.its.yale.edu>
> >     > http://tp.its.yale.edu/mailman/listinfo/cas
> >     >
> >
> >     _______________________________________________
> >     Yale CAS mailing list
> >     cas at tp.its.yale.edu <mailto:cas at tp.its.yale.edu>
> >     http://tp.its.yale.edu/mailman/listinfo/cas
> >
> >
> > ------------------------------------------------------------------------
> >
> > _______________________________________________
> > Yale CAS mailing list
> > cas at tp.its.yale.edu
> > http://tp.its.yale.edu/mailman/listinfo/cas
> >
>
> _______________________________________________
> Yale CAS mailing list
> cas at tp.its.yale.edu
> http://tp.its.yale.edu/mailman/listinfo/cas
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://tp.its.yale.edu/pipermail/cas/attachments/20080722/c23d4c85/attachment.html

More information about the cas mailing list