Bypass the Unauthenticated Page
- Laura McCord
Here is the Scenario
You have already logged into CAS and you want to go to the portal, but you get the "Unauthenticated" guest page. However, when you click on the portal's "Sign In" link, you don't have to login to CAS because you already have a ticket and you are directed inside the portal.
Q: How do I bypass the unauthenticated page if I already have a CAS ticket?
A: The CAS Server includes a feature whereby you can set the request parameter "gateway" to "true" on the request for CAS login. If "gateway" is "true", then CAS will not paint the user login screen. If it can accomplish authentication by single sign on - that is, by detecting the CAS ticket granting cookie - then it will redirect to the URL specified by the "service" parameter with a valid service ticket. If it cannot accomplish single sign on, then it will redirect to the "service" URL without painting any login screen.
In your CAS web.xml file you would include the following snippet. Notice the gateway is set to true.
<filter> <filter-name>CAS Authentication Filter</filter-name> <filter-class> org.jasig.cas.client.authentication.AuthenticationFilter </filter-class> <init-param> <param-name>casServerLoginUrl</param-name> <param-value>https://your.university.edu/cas/login</param-value> </init-param> <init-param> <param-name>service</param-name> <param-value>https://my.university.edu/uPortal/Login</param-value> </init-param> <init-param> <param-name>gateway</param-name> <param-value>true</param-value> </init-param> </filter>