jasig-cas IRC Logs-2011-04-19
[08:04:49 CDT(-0500)] <wgthom> hi james
[08:05:05 CDT(-0500)] <jsumners> howdy
[08:05:21 CDT(-0500)] <wgthom> you best bet is to subscribe/post directly to cas-user@jasig.org
[08:05:32 CDT(-0500)] <jsumners> i would really prefer not to
[08:05:39 CDT(-0500)] <wgthom> http://www.jasig.org/cas/mailing-lists
[08:05:40 CDT(-0500)] <jsumners> i'm subscribed to too many lists as it is
[08:06:00 CDT(-0500)] <wgthom> what is your question...I might be able to help here
[08:07:28 CDT(-0500)] <jsumners> i have implemented a mutual trust login system for my current portal. we will be upgrading to a new version of the portal platform in the coming year that relies on CAS. so i need to figure out the best way for implementing my login system with CAS
[08:07:31 CDT(-0500)] <jsumners> https://swan.clayton.edu/custom/swan_login_tour/
[08:07:45 CDT(-0500)] <jsumners> that is a page that completely describes the system i need to implement
[08:08:43 CDT(-0500)] <jsumners> my initial thought is to validate the user credentials myself against our campus Active Directory (as i am doing now) and then post valid credentials to the CAS server. but that seems contrary to the point of CAS
[08:10:35 CDT(-0500)] <wgthom> indeed
[08:11:19 CDT(-0500)] <wgthom> you'll want to implement a custom login flow, but use the core CAS for primary authN
[08:11:55 CDT(-0500)] <wgthom> this would be a great contribution to the project if we're able
[08:12:25 CDT(-0500)] <jsumners> is there any documentation on implementing custom login flows?
[08:13:11 CDT(-0500)] <wgthom> https://wiki.jasig.org/dosearchsite.action?queryString=login+flow
[08:13:25 CDT(-0500)] <jsumners> well, some key aspects of the process rely on some in-house tools
[08:13:47 CDT(-0500)] <wgthom> are you familar with Spring WebFlow - http://static.springsource.org/spring-webflow/docs/2.0.x/reference/html/index.html
[08:14:15 CDT(-0500)] <jsumners> there's the main thing, i'm not familiar with all of the Java libraries
[08:14:54 CDT(-0500)] <wgthom> you'll need some java expertise in order to implement what you what on top of CAS
[08:15:20 CDT(-0500)] <wgthom> what are the in-house tools built with?
[08:15:36 CDT(-0500)] <jsumners> not under my control, but .NET
[08:15:59 CDT(-0500)] <jsumners> i communicate with a web service provided by our AD administrator
[08:16:27 CDT(-0500)] <wgthom> for primary authN?
[08:17:03 CDT(-0500)] <jsumners> in terms of the login process, for validating the user's identity through their password reset security question
[08:17:40 CDT(-0500)] <jsumners> when the system doesn't recognize a user's browser, it asks them to authorize the browser by validating their security questio
[08:17:42 CDT(-0500)] <jsumners> n
[08:17:48 CDT(-0500)] <wgthom> ok. it is definately possible to build what you want using CAS, but you will need some Java/WebFlow skills
[08:18:13 CDT(-0500)] <wgthom> as an aside there is a .NET cas client - https://wiki.jasig.org/display/CASC/.Net+Cas+Client
[08:19:04 CDT(-0500)] <jsumners> nod i will probably need that for our students' email acess
[08:19:19 CDT(-0500)] <wgthom> OWA?
[08:19:42 CDT(-0500)] <wgthom> https://github.com/wgthom/CasOwa
[08:20:09 CDT(-0500)] <jsumners> excellent
[08:20:14 CDT(-0500)] <wgthom>
[08:22:48 CDT(-0500)] <wgthom> james, you'll plenty of help on cas-dev if you do decided to implement this feature
[08:22:56 CDT(-0500)] <wgthom> you'll find plenty of help...
[08:24:03 CDT(-0500)] <jsumners> that would be good
[08:24:21 CDT(-0500)] <jsumners> i would just rather post via NNTP :-/
[08:25:13 CDT(-0500)] <wgthom> i'll see if someone can take a look atthe gmane issue
[08:25:43 CDT(-0500)] <jsumners> awesome. it's so much easier to manage lists that way
[08:25:49 CDT(-0500)] <jsumners> from my perspective
[08:26:01 CDT(-0500)] <wgthom> i hear ya
[08:49:58 CDT(-0500)] <jsumners> i think you have given me enough information to get started