Re: cas-dev Digest, Vol 42, Issue 2

Hello All,

I am able to create some jsp pages on tomcat server and configure it with CAS using the demo http://www.ja-sig.org/wiki/display/CASUM/Demo. Similarly i need to create some .net pages and make the single sign on work for both these jsps and .net pages. I am completely new to .net. I have created simple .net page(on IIS) and it is working fine. Is there any demo to configure CAS with .net? also how to make a single CAS login to work with both jsp and .net pages running on different servers ? Please point me to appropriate information source. I appreciate your help.

Regards,

Meghana

Hello Mark,

Thanks for your reply. I was successful in creating a simple .net application using IIS. And I did almost all the changes mentioned in http://www.ja-sig.org/wiki/display/CASC/.Net+Cas+Client (mentioned in Browser Based Authentication)except I couldnot understand where should (in while file) i should make the following changes(mentioned in Proxy Based Authentication) .

Could someone please let me know.

Proxy Based Authentication

To continue the examples, imagine you have a web service which returns user details pulled from a database and keyed on a userid.  You could have the web service take 2 parameters - a user name and a password - but that would mean that you would have to pass user credentials around.  Hitting your web service via SSL would be an improvement, but still far from ideal.  A better solution would be to take one parameter - a proxy ticket generated by CAS.  You could then use this CAS client to get the user name in the following way:

...
using DotNetCASClient;

...

[WebMethod]
    public String GetUserName(String ticket) {
	//The first argument in the constructor is the service against which you trying to validate
	//The second argument is the proxy validation URL for your CAS server
        DotNetCASClientProxyValidate client
                = new DotNetCASClientProxyValidate("http://myawesomeservice.uwe.ac.uk", "https://casserver.uwe.ac.uk/cas/proxyValidate");
        String userid = client.Authenticate(ticket);
        return userid;
    }
...

Obviously, you would want to then use the username to retrieve details from the database and return them as well.  If the authentication fails then the returned user will be 'failed'. 

The DotNetCASClientProxyValidate class also has a GetCASXML method which also takes the ticket as a String.  This performs the same authentication process that the Authenticate() method does but, instead of returning an user name, it returns the full XML that CAS returned - for example:

<cas:serviceResponse xmlns:cas="http://www.yale.edu/tp/cas">
        <cas:authenticationSuccess>
              <cas:user>testUserName</cas:user>
                <cas:proxies>
                       <cas:proxy>https://myawesomecasproxyplace/cas/pgtURL.asp</cas:proxy>
              </cas:proxies>
        </cas:authenticationSuccess>
 </cas:serviceResponse>

 This particularly useful if you want to access more data than just the user name - especially if your CAS is configured to return other user information as well.

Regards,

Meghana

--- On Mon, 5/12/08, Mark Rogers <mark_rogers@...> wrote:

From: Mark Rogers <mark_rogers@...>
Subject: Re: [cas-dev] CAS for both jsp and .net pages
To: meghana.janumpally@..., "Mailing list for CAS developers" <cas-dev@...>
Date: Monday, May 12, 2008, 4:11 PM

This page may be of some assistance.

http://www.ja-sig.org/wiki/display/CASC/.Net+Cas+Client

- Mark

On 12-May-08, at 10:57 AM, Meghana Reddy Janumpally wrote:

Hello All, I am able to create some jsp pages on tomcat server and configure it with CAS using the demo http://www.ja-sig.org/wiki/display/CASUM/Demo. Similarly i need to create some .net pages and make the single sign on work for both these jsps and .net pages. I am completely new to .net. I have created simple .net page(on IIS) and it is working fine. Is there any demo to configure CAS with .net? also how to make a single CAS login to work with both jsp and .net pages running on different servers ? Please point me to appropriate information source. I appreciate your help.   Regards, Meghana

---

Be a better friend, newshound, and know-it-all with Yahoo! Mobile. Try it now.

_______________________________________________

cas-dev mailing list

cas-dev@...

http://tp.its.yale.edu/mailman/listinfo/cas-dev

Hello All,

Can someone please let me know if anyone has configured CAS with .net application. If so which documentation did you follow. I could find so many documentations  llike http://www.ja-sig.org/wiki/display/CASC/.Net+Cas+Client, http://www.ja-sig.org/wiki/display/CASC/.Net+Http+module, http://www.tamu.edu/CAS/libraries/net/ but none of them worked for me. Can some one help me in this regards.

Thanks,

Meghana

--- On Tue, 5/13/08, Meghana Reddy Janumpally <meghana.janumpally@...> wrote:

From: Meghana Reddy Janumpally <meghana.janumpally@...>
Subject: Re: [cas-dev] CAS for both jsp and .net pages
To: "Mailing list for CAS developers" <cas-dev@...>, "Mark Rogers" <mark_rogers@...>
Date: Tuesday, May 13, 2008, 4:57 PM

Hello Mark, Thanks for your reply. I was successful in creating a simple .net application using IIS. And I did almost all the changes mentioned in http://www.ja-sig.org/wiki/display/CASC/.Net+Cas+Client (mentioned in Browser Based Authentication)except I couldnot understand where should (in while file) i should make the following changes(mentioned in Proxy Based Authentication) . Could someone please let me know.   Proxy Based Authentication To continue the examples, imagine you have a web service which returns user details pulled from a database and keyed on a userid.  You could have the web service take 2 parameters - a user name and a password - but that would mean that you would have to pass user credentials around.  Hitting your web service via SSL would be an improvement, but still far from ideal.  A better solution would be to take one parameter - a proxy ticket generated by CAS.  You could then use this CAS client to get the user name in the following way: ... using DotNetCASClient; ... [WebMethod] public String GetUserName(String ticket) { //The first argument in the constructor is the service against which you trying to validate //The second argument is the proxy validation URL for your CAS server DotNetCASClientProxyValidate client = new DotNetCASClientProxyValidate("http://myawesomeservice.uwe.ac.uk", "https://casserver.uwe.ac.uk/cas/proxyValidate"); String userid = client.Authenticate(ticket); return userid; } ... Obviously, you would want to then use the username to retrieve details from the database and return them as well.  If the authentication fails then the returned user will be 'failed'.  The DotNetCASClientProxyValidate class also has a GetCASXML method which also takes the ticket as a String.  This performs the same authentication process that the Authenticate() method does but, instead of returning an user name, it returns the full XML that CAS returned - for example: <cas:serviceResponse xmlns:cas="http://www.yale.edu/tp/cas"> <cas:authenticationSuccess> <cas:user>testUserName</cas:user> <cas:proxies> <cas:proxy>https://myawesomecasproxyplace/cas/pgtURL.asp</cas:proxy> </cas:proxies> </cas:authenticationSuccess> </cas:serviceResponse>  This particularly useful if you want to access more data than just the user name - especially if your CAS is configured to return other user information as well.     Regards, Meghana --- On Mon, 5/12/08, Mark Rogers <mark_rogers@...> wrote: From: Mark Rogers <mark_rogers@...> Subject: Re: [cas-dev] CAS for both jsp and .net pages To: meghana.janumpally@..., "Mailing list for CAS developers" <cas-dev@...> Date: Monday, May 12, 2008, 4:11 PM This page may be of some assistance. http://www.ja-sig.org/wiki/display/CASC/.Net+Cas+Client - Mark On 12-May-08, at 10:57 AM, Meghana Reddy Janumpally wrote: Hello All, I am able to create some jsp pages on tomcat server and configure it with CAS using the demo http://www.ja-sig.org/wiki/display/CASUM/Demo. Similarly i need to create some .net pages and make the single sign on work for both these jsps and .net pages. I am completely new to .net. I have created simple .net page(on IIS) and it is working fine. Is there any demo to configure CAS with .net? also how to make a single CAS login to work with both jsp and .net pages running on different servers ? Please point me to appropriate information source. I appreciate your help.   Regards, Meghana Be a better friend, newshound, and know-it-all with Yahoo! Mobile. Try it now. _______________________________________________ cas-dev mailing list cas-dev@... http://tp.its.yale.edu/mailman/listinfo/cas-dev

_______________________________________________
cas-dev mailing list
cas-dev@...
http://tp.its.yale.edu/mailman/listinfo/cas-dev

Hello Paul,

I dont see any CAS login page. I directly see the .net page when i acess the .net page.

Regards,

Meghana

--- On Wed, 5/14/08, Paul Hunnisett <Paul.Hunnisett@...> wrote:

From: Paul Hunnisett <Paul.Hunnisett@...>
Subject: Re: [cas-dev] CAS for .net application
To: meghana.janumpally@..., "Mailing list for CAS developers" <cas-dev@...>
Date: Wednesday, May 14, 2008, 7:40 AM

What problems did you encounter with the .Net client?  It would be
easier to provide help if you can give us details of your problems...

Cheers

Paul Hunnisett

Meghana Reddy Janumpally wrote:
> Hello All,
> 
> Can someone please let me know if anyone has configured CAS with .net 
> application. If so which documentation did you follow. I could find so
many 
> documentations  llike
http://www.ja-sig.org/wiki/display/CASC/.Net+Cas+Client, 
> http://www.ja-sig.org/wiki/display/CASC/.Net+Http+module, 
> http://www.tamu.edu/CAS/libraries/net/ but none of them worked for me. Can
some 
> one help me in this regards.
> 
>  
> 
> Thanks,
> 
> Meghana
> 
> --- On *Tue, 5/13/08, Meghana Reddy Janumpally
/<meghana.janumpally@...>/* 
> wrote:
> 
>     From: Meghana Reddy Janumpally <meghana.janumpally@...>
>     Subject: Re: [cas-dev] CAS for both jsp and .net pages
>     To: "Mailing list for CAS developers"
<cas-dev@...>, "Mark
>     Rogers" <mark_rogers@...>
>     Date: Tuesday, May 13, 2008, 4:57 PM
> 
>     Hello Mark,
> 
>     Thanks for your reply. I was successful in creating a simple .net
>     application using IIS. And I did almost all the changes mentioned in
>     http://www.ja-sig.org/wiki/display/CASC/.Net+Cas+Client (mentioned in
>     *Browser Based Authentication*)except I couldnot understand where
should (in
>     while file) i should make the following changes(mentioned in *Proxy
Based
>     Authentication*) .
> 
>     Could someone please let me know.
> 
>      
> 
>     *Proxy Based Authentication*
> 
>     To continue the examples, imagine you have a web service which returns
user
>     details pulled from a database and keyed on a userid.  You could have
the
>     web service take 2 parameters - a user name and a password - but that
would
>     mean that you would have to pass user credentials around.  Hitting
your web
>     service via SSL would be an improvement, but still far from ideal.  A
better
>     solution would be to take one parameter - a proxy ticket generated by
CAS. 
>     You could then use this CAS client to get the user name in the
following way:
> 
>     ...
>     using DotNetCASClient;
> 
>     ...
> 
>     [WebMethod]
>         public String GetUserName(String ticket) {
>     	//The first argument in the constructor is the service against which
you trying to validate
>     	//The second argument is the proxy validation URL for your CAS server
>             DotNetCASClientProxyValidate client
>                     = new
DotNetCASClientProxyValidate("http://myawesomeservice.uwe.ac.uk",
"https://casserver.uwe.ac.uk/cas/proxyValidate");
>             String userid = client.Authenticate(ticket);
>             return userid;
>         }
>     ...
> 
>     Obviously, you would want to then use the username to retrieve details
from
>     the database and return them as well.  If the authentication fails
then the
>     returned user will be 'failed'. 
> 
>     The DotNetCASClientProxyValidate class also has a GetCASXML method
which
>     also takes the ticket as a String.  This performs the same
authentication
>     process that the Authenticate() method does but, instead of returning
an
>     user name, it returns the full XML that CAS returned - for example:
> 
>     <cas:serviceResponse
xmlns:cas="http://www.yale.edu/tp/cas">
>             <cas:authenticationSuccess>
>                   <cas:user>testUserName</cas:user>
>                     <cas:proxies>
>                           
<cas:proxy>https://myawesomecasproxyplace/cas/pgtURL.asp</cas:proxy>
>                   </cas:proxies>
>             </cas:authenticationSuccess>
>      </cas:serviceResponse>
> 
>      This particularly useful if you want to access more data than just
the user
>     name - especially if your CAS is configured to return other user
information
>     as well.
> 
>      
> 
>      
> 
>     Regards,
> 
>     Meghana
> 
> 
> 
>     --- On *Mon, 5/12/08, Mark Rogers /<mark_rogers@...>/*
wrote:
> 
>         From: Mark Ro