Subsonic Forum

forum.subsonic.org
http://forum.subsonic.org/forum/

CAS SSO

http://forum.subsonic.org/forum/viewtopic.php?f=3&t=12270

Page 1 of 1

CAS SSO

PostPosted: Tue Jun 18, 2013 9:00 am
by firescalp
Hi there!

Great work!! I'm looking for a new feature:
I have a CAS server and i wish to integrate it with subsonic. CAS is a java App wich offers SSO (Single Sign On) for WebApps.
Here how it works:
Image
http://www.jasig.org/cas

The problem is the compatibility with the android/iOS client. To get this working, subsonic MUST operate directly SSO.

It would be great if this feature will be available!

Kind regards

Re: CAS SSO

PostPosted: Sun Jun 23, 2013 4:45 am
by jol
as obviously your CAS authenticates against LDAP ultimately, why don´t you configure Subsonic to do LDAP authentication?
Cheers, jol

Re: CAS SSO

PostPosted: Mon Jun 24, 2013 7:03 am
by firescalp
Shure, but I need the SSO feature (Single Sign-On).

With LDAP auth, user have to log on again, even he is already loged on other services. With CAS, you have to log on once, then you are logged over all the others services.
The problem is, or will be, that the android or iOS client will not be able to communicate with this auth handler. They are official clients that you can use or integrate with Subsonic.

Regards

Re: CAS SSO

PostPosted: Mon Jun 24, 2013 2:12 pm
by jol
I don´t really see the issue as most applications on Android (don´t know for iOS) including Subsonic allow to persist the credentials and thus you don´t have to enter them all the time - no matter what services you use. In fact because of that persistence I use a dedicated account just for Android in order to avoid the use of a high priviledged accounts and the risk of exposure in case the device is lost or stolen.
Best regards, jol

Re: CAS SSO

PostPosted: Mon Jun 24, 2013 2:42 pm
by firescalp
okay, lets say it differently:

When you come on my domain name, for exemple www.domain.com, you have to logon on my CAS server. After that, you dont have to log on again on the other services because SSO handles that for you.
For exemple, when you go on www.domain.com/ajaxplorer/ or www.domain.com/owncloud/, the webapp asks CAS server if the session is OK, then send back the username and other information.
Subsonic doesn't handles CAS authentication. So, SSO can't be installed on the server.

My question is: Is there a way to add this feature??

My suggestion is to look at the CAS solution that you can find on my first post. Authentication will be handled directly by CAS and that will, i think, create the Android clien auth handler problem.

Re: CAS SSO

PostPosted: Fri Jan 03, 2014 9:00 am
by firescalp
Still no CAS support?

Re: CAS SSO

PostPosted: Fri Dec 12, 2014 9:33 pm
by sonicpm
Hello, did you find a workaround for your problem ? I'm looking for something like you asked as well.
All times are UTC
Page 1 of 1
Powered by phpBB® Forum Software © phpBB Group
http://www.phpbb.com/