Versions Compared

Old Version 12

changes.mady.by.user Andrew Petro

Saved on

compared with

New Version 13

changes.mady.by.user Andrew Petro

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

CAS 2.0 ServiceTickets are ServiceTickets the GrantingTicket of which has a Principal that is a user – an authenticated netid – and which itself has a grantor of null. Implementations of the CAS 2.0 "serviceValidate" and "validate" web targets will need to verify that the CAS 3.0 ServiceTicket they are validating in fact has a single GrantingTicket in the chain of grantors and that the Principal of that single grantor represents an authenticated netid.

The XML response associated with ServiceTickets in CAS 2.0 represents this special case where the chain of authenticated principals contained only a single Principal that represents an authenticated user.

Code Block
xml
xml

<cas:serviceResponse xmlns:cas='http://www.yale.edu/tp/cas'>
    <cas:authenticationSuccess>
	<cas:user>NetID</cas:user>
    </cas:authenticationSuccess>
  </cas:serviceResponse>

Understanding traditional ProxyTickets in this new scheme

...