Questions tagged [cas]

Central Authentication Service, a trusted system to authenticate a user. For Code Access Security (Microsoft .NET) use the [code-access-security] tag

The Central Authentication Service (CAS) is a single sign-on protocol for the web. Its purpose is to permit a user to access multiple applications while providing their credentials (such as userid and password) only once. It also allows web applications to authenticate users without gaining access to a user's security credentials, such as a password.

1696 questions

197

votes

5 answers

SSO with CAS or OAuth?

I wonder if I should use the CAS protocol or OAuth + some authentication provider for single sign-on. Example Scenario: A User tries to access a protected resource, but is not authenticated. The application redirects the user to the SSO server. If…

asked Jan 09 '10 at 10:26

deamon

89,107
111
320
448

votes

5 answers

CAS vs. SAML vs. OAuth2

Before you put me down for asking too basic a question without doing any homework, I'd like to say that I have been doing a lot of reading on these topics, but I'm still confused. My needs seem simple enough. At my company, we have a bunch of Ruby…

ruby-on-rails oauth-2.0 single-sign-on saml cas

asked Mar 14 '15 at 19:31

Anjan

1,613
1
19
25

votes

2 answers

To Go or Not To Go with Liferay? What's the good, bad, and ugly?

We are evaluating several solutions for a new web thing we're looking to build. There are several aspects to it, including user management, content management, campaigns, community, and financial transactions. We are looking to roll the framework…

java joomla liferay vaadin cas

asked Sep 26 '11 at 20:20

Alexx

3,572
6
32
39

votes

6 answers

Uri not Absolute exception getting while calling Restful Webservice

The below code snippet is using to call my web service using restful API. ClientConfig config = new DefaultClientConfig(); Client client = Client.create(config); String uri= "https://127.0.0.1:8443/cas-server-webapp-3.5.0/login"; …

java web-services http servlets cas

asked Feb 13 '13 at 07:58

Suresh Atta

120,458
37
198
307

votes

3 answers

Simple SSO - using custom authentication - CAS or some Oauth or openid server?

I'd like to know more about the different ways of solving Single Sign-On and their pros and cons. Have you worked with one particular solution, tell me what's good about it and tell me what the limitations or suboptimal parts are. Below are…

java ruby oauth single-sign-on cas

asked May 14 '11 at 14:41

oma

38,642
11
71
99

votes

5 answers

Which CAS implementation to use in django?

Which CAS implementation should i use to enable CAS single sign on to my django app (trusing a specified CAS server, I'm not interested in creating a CAS provider) ? What I can find are the…

python django authentication single-sign-on cas

asked Nov 12 '09 at 14:44

Rasmus Kaj

4,224
1
20
23

votes

4 answers

Attempt by security transparent method X to access security critical method Y failed

I have a fairly stable server application version that's been deployed for nearly a year at dozens of customers. One new customer recently setup the application and is getting the following error: System.MethodAccessException: Attempt by security…

security .net-4.0 cas code-access-security

asked Aug 09 '12 at 14:33

RMD

3,421
7
39
85

votes

3 answers

Difference between Shibboleth and CAS?

Please explain what the differences are between Shibboleth and CAS?

cas shibboleth

asked Apr 20 '11 at 15:55

Mike Flynn

22,342
54
182
341

votes

7 answers

PKIX path validation failed: java.security.cert.CertPathValidatorException: signature check failed

From Pro Spring Security book by Carlo Scarioni, I'm trying to integrate Spring Application with CAS Server. I followed every step that the book instructed, still I'm stuck with this error. Please help me out. SEVERE:…

spring-security digital-signature cas

asked Aug 28 '15 at 21:24

user961690

votes

3 answers

What does "spurious failure" on AtomicInteger weakCompareAndSet mean?

The Java AtomicInteger class has a method - boolean weakCompareAndSet(int expect,int update) Its documnentation says: May fail spuriously. What does 'failing spuriously' here mean?

java cas

asked Dec 10 '08 at 07:44

pdeva

43,605
46
133
171

votes

2 answers

What is the relation between CAS vs SAML?

I understand that CAS and SAML are different protocols used for Single-sign on purposes but, what confuses me is articles that say "CAS has an SAML implementation". Aren't CAS and SAML different ways of how Single Sign-on can be implemented ? Lets…

single-sign-on saml saml-2.0 cas

asked Apr 28 '17 at 09:22

yathirigan

5,619
22
66
104

votes

1 answer

What are the differences between CAS and Keycloak?

What are the differences between CAS (Central Authentication Service) and Keycloak (Identity and Access Management)?

cas keycloak

asked Feb 22 '16 at 06:46

manvendra

votes

5 answers

Getting more attributes from CAS than just user id

I am using CAS with JDBC Authentication handler and was wondering is it possible to get the other attributes of principal object (for e.g. firstname, lastname) not just the username from CAS after successful authentication?

cas

asked Feb 03 '11 at 03:10

Pranav Garg

votes

1 answer

got java.security.InvalidAlgorithmParameterException: the trustAnchors parameter must be non-empty when using cas

we get the following exception in our application under tomcat which is using cas. java.security.InvalidAlgorithmParameterException: the trustAnchors parameter must be non-empty when I google for it I found some guess and solutions but no one…

java ssl cas

asked Jul 09 '11 at 06:26

Jimmy1980

votes

3 answers

PKIX path building failed, but the certificate is in cacerts

I have the problem that is also described here. The thing is that I created a certificate and added it to the keystore of tomcat, and then I copied it to the cacerts truststore. However, somehow I still get this error. What I have done: 1) keytool…

java ssl https cas

asked Sep 09 '16 at 10:38

yemerra

1,352
4
19
44

2 3

…

99 100 Next