[jboss-user] [JBoss Portal] - Re: Using JBoss Portal and CAS to implement SSO for external
do-not-reply at jboss.com
Mon Feb 18 09:38:56 EST 2008
That can't work. AFAIK is an IFrame like another Browser window. The Cookie that you get from the CAS Server, when you log into the portal is for exactly that session. The IFrame session has nothing to do with the Portal-Session, it is just displayed inside of that Window (as i said, it is a new Browser Sandbox inside the Browser). Thats why you can't get the Session Ticket via session.getAttribute("edu.yale.its.tp.cas.client.filter.user")
because one Session can't access the Attributes of another session.
View the original post : http://www.jboss.com/index.html?module=bb&op=viewtopic&p=4130126#4130126
Reply to the post : http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&p=4130126
More information about the jboss-user