[cas-user] Delegate login UI to other service
22 views
Skip to first unread message
Yaroslav Panych
Mar 2, 2017, 3:53:45 AM3/2/17
to CAS Community
Hello
I have such task:
CAS 5. Instead of login form displayed to user I need it to redirected to other 3rd party service where user performs authentication. 3rd party service will generate token(only token), which can be transported back to my CAS (via 302 redirect of course) as credential. My CAS must accept and save it for whole SSO session period and can be used as api key to receive user attributes from 3rd party page.
How I can do it?
I can modify login-webflow.xml : replace viewLoginForm by my own state which will generate redirect, but I need know what data I must pass into redirect url so 3rd-party service will redirect back into this flow intance.
What else I need do? I need interpret received token and introduce it as credential to CAS.
What else I should do so when cas requires attributes I could fetch them from 3rd party service using received earlier token?
Of course received token is expirable also... so what I need to do to instruct CAS to ask me if my token is expired(I going ask 3rd party service)?
I there any developer guide?
I have such task:
CAS 5. Instead of login form displayed to user I need it to redirected to other 3rd party service where user performs authentication. 3rd party service will generate token(only token), which can be transported back to my CAS (via 302 redirect of course) as credential. My CAS must accept and save it for whole SSO session period and can be used as api key to receive user attributes from 3rd party page.
How I can do it?
I can modify login-webflow.xml : replace viewLoginForm by my own state which will generate redirect, but I need know what data I must pass into redirect url so 3rd-party service will redirect back into this flow intance.
What else I need do? I need interpret received token and introduce it as credential to CAS.
What else I should do so when cas requires attributes I could fetch them from 3rd party service using received earlier token?
Of course received token is expirable also... so what I need to do to instruct CAS to ask me if my token is expired(I going ask 3rd party service)?
I there any developer guide?
Reply all
Reply to author
Forward
0 new messages