Spring Security client related: How to automatically login my webapp when the CasAuthenticationFilter cannot be used
32 views
Skip to first unread message
Paul Roemer
Jul 4, 2019, 6:01:40 AM7/4/19
to CAS Community
Hi,
I will try to describe the exact problem in detail as it is hard to sum up in the title.
We have a website and several other services that we are gonna protect with CAS 5.3. The website uses Spring Security but we have to use a custom access control due to it's Vaadin nature. It's a SPA so we cannot rely on Spring Security's filter mechanism.
We have a website and several other services that we are gonna protect with CAS 5.3. The website uses Spring Security but we have to use a custom access control due to it's Vaadin nature. It's a SPA so we cannot rely on Spring Security's filter mechanism.
I would like to be able to login a user that is already authenticated via CAS when the user enters the website. Normally, the Spring Security CasAuthenticationFilter would jump in if a user wants to visit a guarded page but this is not the case. I understand I have to trigger that mechanism manually.
Does anyone has a suggestion what would be the best approach? Use the Java CAS Client and do more or less the same what the CasAuthenticationFilter is doing and implement it on my own?
Cheers,
Does anyone has a suggestion what would be the best approach? Use the Java CAS Client and do more or less the same what the CasAuthenticationFilter is doing and implement it on my own?
Cheers,
Paul
Ray Bon
Jul 4, 2019, 11:20:58 AM7/4/19
to cas-...@apereo.org
Paul,
Spring security is a small convenience. Java CAS client can be configured without spring.
https://github.com/apereo/java-cas-client
Ray
--
Ray Bon
Programmer Analyst
Development Services, University Systems
2507218831 | CLE 019 | rb...@uvic.ca
I respectfully acknowledge that my place of work is located within the ancestral, traditional and unceded territory of the Songhees, Esquimalt and WSÁNEĆ Nations.
Reply all
Reply to author
Forward
0 new messages