Is there a way of invoking CAS through APIs or similar?
|
View:
New views
5 Messages
—
Rating Filter:
Alert me
|
 |
Is there a way of invoking CAS through APIs or similar?
by Unai Rodriguez-2
::
Rate this Message:
Dear All,
I am thinking of modifying the CAS login page to allow calls to URLs like this: https://mycasname/cas/login?user=xxxx&pass+yyyy have CAS automatically try to login using the given parameters. Is there something similar already built-in? I am doing this for monitoring/testing purposes (i.e. every minute or so I will have a script login in automatically to make sure CAS is fine). thanksssssssssss, unai _______________________________________________ Yale CAS mailing list cas@... http://tp.its.yale.edu/mailman/listinfo/cas |
|
|
RE: Is there a way of invoking CAS through APIs or similar?
by Bocken Stefan
::
Rate this Message:
Dear Rodriguez,
A while ago I tried to do this with a cookie (and succeeded in doing so). I've asked this question to the mailing list and you can find the answer here:
This was the answer of Scott
If you are passing a token via an HttpServletRequest (either as a cookie or
some request parameter), you should extend the AbstractNonInteractiveLoginAction to construct a credentials object from the request parameter without prompting the user for anything (this is what the X.509 and SPNEGO code does). You'll then create an AuthenticationHandler that can do stuff with that token (i.e. authenticate it) and a CredentialsToPrincipalResolver that can find the principal for that token. Wire them all up in the appropriate places (I make that sound so easy don't I? ;-)) and you should be good to go. -Scott Regards,
Stefan From: Unai Rodriguez Sent: Fri 09-May-08 8:47 To: cas Subject: Is there a way of invoking CAS through APIs or similar? Dear All, I am thinking of modifying the CAS login page to allow calls to URLs like this: https://mycasname/cas/login?user=xxxx&pass+yyyy have CAS automatically try to login using the given parameters. Is there something similar already built-in? I am doing this for monitoring/testing purposes (i.e. every minute or so I will have a script login in automatically to make sure CAS is fine). thanksssssssssss, unai _______________________________________________ Yale CAS mailing list cas@... http://tp.its.yale.edu/mailman/listinfo/cas _______________________________________________ Yale CAS mailing list cas@... http://tp.its.yale.edu/mailman/listinfo/cas |
|
|
RE: Is there a way of invoking CAS through APIs or similar?
by Unai Rodriguez-2
::
Rate this Message:
Thank you so much, Stefan. Would you be able to provide something more
detailed? cheers, unai On Fri, 9 May 2008 09:09:19 +0200, Bocken Stefan <Stefan.Bocken@...> wrote: > Dear Rodriguez, > > A while ago I tried to do this with a cookie (and succeeded in doing so). > I've asked this question to the mailing list and you can find the answer > here: > http://tp.its.yale.edu/pipermail/cas/2008-March/007789.html > > This was the answer of Scott > > If you are passing a token via an HttpServletRequest (either as a cookie > or > some request parameter), you should extend the > AbstractNonInteractiveLoginAction to construct a credentials object from > the > request parameter without prompting the user for anything (this is what > the > X.509 and SPNEGO code does). You'll then create an AuthenticationHandler > that can do stuff with that token (i.e. authenticate it) and a > CredentialsToPrincipalResolver that can find the principal for that > Wire them all up in the appropriate places (I make that sound so easy > don't > I? ;-)) and you should be good to go. > > -Scott > > Regards, > > Stefan > > > > From: Unai Rodriguez > Sent: Fri 09-May-08 8:47 > To: cas > Subject: Is there a way of invoking CAS through APIs or similar? > > > Dear All, > > I am thinking of modifying the CAS login page to allow calls to URLs like > this: > > https://mycasname/cas/login?user=xxxx&pass+yyyy > > have CAS automatically try to login using the given parameters. > > Is there something similar already built-in? > > I am doing this for monitoring/testing purposes (i.e. every minute or so > will have a script login in automatically to make sure CAS is fine). > > thanksssssssssss, > unai > > _______________________________________________ > Yale CAS mailing list > cas@... > http://tp.its.yale.edu/mailman/listinfo/cas _______________________________________________ Yale CAS mailing list cas@... http://tp.its.yale.edu/mailman/listinfo/cas |
|
|
RE: Is there a way of invoking CAS through APIs orsimilar?
by Andrew R Feller
::
Rate this Message:
There has been some discussions on the developer mail list about a
RESTful API for CAS: http://www.nabble.com/RESTful-CAS-API-tp16856189p16868582.html Scotty B (sorry for the nickname Scott ^^;) can tell you more about it! Andrew R Feller, Analyst University Information Systems 200 Fred Frey Building Louisiana State University Baton Rouge, LA, 70803 (225) 578-3737 (Office) (225) 578-6400 (Fax) -----Original Message----- From: cas-bounces@... [mailto:cas-bounces@...] On Behalf Of Unai Rodriguez Sent: Sunday, May 11, 2008 9:45 PM To: Yale CAS mailing list Subject: RE: Is there a way of invoking CAS through APIs orsimilar? Thank you so much, Stefan. Would you be able to provide something more detailed? cheers, unai On Fri, 9 May 2008 09:09:19 +0200, Bocken Stefan <Stefan.Bocken@...> wrote: > Dear Rodriguez, > > A while ago I tried to do this with a cookie (and succeeded in doing so). > I've asked this question to the mailing list and you can find the answer > here: > http://tp.its.yale.edu/pipermail/cas/2008-March/007789.html > > This was the answer of Scott > > If you are passing a token via an HttpServletRequest (either as a cookie > or > some request parameter), you should extend the > AbstractNonInteractiveLoginAction to construct a credentials object from > the > request parameter without prompting the user for anything (this is what > the > X.509 and SPNEGO code does). You'll then create an AuthenticationHandler > that can do stuff with that token (i.e. authenticate it) and a > CredentialsToPrincipalResolver that can find the principal for that token. > Wire them all up in the appropriate places (I make that sound so easy > don't > I? ;-)) and you should be good to go. > > -Scott > > Regards, > > Stefan > > > > From: Unai Rodriguez > Sent: Fri 09-May-08 8:47 > To: cas > Subject: Is there a way of invoking CAS through APIs or similar? > > > Dear All, > > I am thinking of modifying the CAS login page to allow calls to URLs > this: > > https://mycasname/cas/login?user=xxxx&pass+yyyy > > have CAS automatically try to login using the given parameters. > > Is there something similar already built-in? > > I am doing this for monitoring/testing purposes (i.e. every minute or so I > will have a script login in automatically to make sure CAS is fine). > > thanksssssssssss, > unai > > _______________________________________________ > Yale CAS mailing list > cas@... > http://tp.its.yale.edu/mailman/listinfo/cas _______________________________________________ Yale CAS mailing list cas@... http://tp.its.yale.edu/mailman/listinfo/cas _______________________________________________ Yale CAS mailing list cas@... http://tp.its.yale.edu/mailman/listinfo/cas |
|
|
Re: Is there a way of invoking CAS through APIs orsimilar?
by scott_battaglia
::
Rate this Message:
We are working on a RESTful API, as Andrew said:
http://www.ja-sig.org/wiki/display/CASUM/RESTful+API It is designed for services to utilize CAS, but it may meet your needs. We're targeting it for a 3.2.2 release. -Scott On Mon, May 12, 2008 at 8:18 AM, Andrew R Feller <afelle1@...> wrote: There has been some discussions on the developer mail list about a -- -Scott Battaglia PGP Public Key Id: 0x383733AA LinkedIn: http://www.linkedin.com/in/scottbattaglia _______________________________________________ Yale CAS mailing list cas@... http://tp.its.yale.edu/mailman/listinfo/cas |
| Free Forum Powered by Nabble | Forum Help |