Reputation: 1036
CAS SSO with Java EE Web Container Authentication
I'm new to Spring 3.1 and I've been using Java EE Web Container Authentication so far for security (the <jee> tag has come in quite handy). However, the project that I'm working on has a few separate applications that need to have access to the current user's information without logging in multiple times.
Not wanting to reinvent the wheel, I've struggled with using CAS over the past couple of days and have finally got it working with the example that comes with the package. Now, what I would like to do is use the web container setup that I've created in an individual system and use it in CAS. Is this possible or do I need to be looking into some other form of gathering the user's roles?
Upvotes: 0
Views: 718
Answers (1)
Reputation: 10339
Since you use Java EE authentication your SSO framework should support Java EE agent. In your case SSO framework should support WebSphere. Unfortunately, open source providers like CAS and JOSSO (http://www.josso.org/confluence/display/JOSSO1/Setup+JOSSO+Agent+%28SP%29) do not support WebSphere. Probably you need to use commercial SSO framework, lice SiteMinder: https://supportcontent.ca.com/cadocs/0/CA%20SiteMinder%20Agent%20for%20WebSphere%20r12%20SP2-ENU/Bookshelf_Files/HTML/index.htm?toc.htm?941171.html
Alternative approach is to abandon Java EE authentication and use SpringSecurity authentication in all your applications. In this case you will be able to use CAS or JOSSO.
Upvotes: 1
Related Questions
- Spring Boot Security CAS Authentication Integration
- Authenticate spring web application through CAS server
- How to use CAS SSO with JHipster
- CAS clients over HTTP
- Spring Security + CAS SSO AuthenticationManager
- CAS Authentication using Annotations
- Single Sign On with CAS server in JAVA
- Spring Security and CAS
- SSO using Spring and CAS
- Implement SSO using CAS + Spring Security