|
| Web-based Single-Sign-On |
 |
Wed, 28 Sep 2005 12:07:24 GMT |
Hello,
i want to implement a single-sign-on solution upon the (java based opensource)
Yale CAS Server. I have to integrate two Novell
Webapplications into this environment: Groupwise Webaccess and Netstorage. Now
im searching the "injection point" or hook where
i can make these apps. woking together with CAS. A solution could be to subclass
the Webaccess servlet and to overwrite the
login methods to validate the CAS ticket. Another is probably to implement a
custom provider and configure it in webacc.cfg
config file. The general question (not related only to CAS) is: How can i can
modify the login procedure of gw-webaccess and
netstorage. Theres a e-directory running, but no further novell-infrastructure
(like exteNd, ichain, securelogin, ...)
Thanks for any help
|
| Post Reply
|
| Re: Web-based Single-Sign-On |
 |
Thu, 29 Sep 2005 08:36:32 GMT |
You probably can pass the user password to the GroupWise webaccess using
url parameters, but I'd consider this unsafe (try User.login and
User.password) and you probably don't have it anyway (just the CAS
ticket, I guess). Your best bet for GW is subclassing or writing another
login provider, provided you can figure out what the methods do and if
WebAccess allows a password-less login (I'm thinking: it may, or it may
not; can't remember how the webaccess agent logs into groupwise right
now).
hth,
/ch
|
| Post Reply
|
|
|
|
|
|
|
|
|
|