Hi
Got nicely working usr/psw login with connected java client - everything
works like charmed.
But I need to build a solution where users can login both with usr/psw and
smartcard. So the login page should include additional link for smartcard
login.
With Spring Security and Tomcat setup I have done this several times
-smartcard authentication is another app. server machine that requires
client certificate and forwards it to main application that verifies the
certificate. I have always built a so called custom authenticator that can
handle whatever authentication. But as this product is new for me, asking
for help how to continue. At the moment I cant find a way how to build
custom authenticator for CAS.
For usr/psw the following handler is used (as in the example)
<bean id="primaryAuthenticationHandler"
class="org.jasig.cas.authentication.AcceptUsersAuthenticationHandler">
that maps users and passwords.
So when thinking on the new login form, then additionally to usr/psw inputs I
will add smartcard login link, that forwards the request to another server
where certificate is asked and forwarded back and
where CAS should catch the certificate information, validate it and grant
ticket. Am I in the correct way? Any ideas or examples or tutorials on that?
Looked also to that tutorial:
http://jasig.github.io/cas/4.0.x/installation/X509-Authentication.html
but for me it didnt work, for some reason requests went to loop:
ERR_TOO_MANY_REDIRECTS. It started to happen when I moved cas-servlet.xml to my
project (default overlay project)
Thanks
:)
--
You received this message because you are subscribed to the Google Groups "CAS
Community" group.
To unsubscribe from this group and stop receiving emails from it, send an email
to [email protected].
Visit this group at https://groups.google.com/a/apereo.org/group/cas-user/.
