You are viewing a plain text version of this content. The canonical link for it is here.

Posted to notifications@ofbiz.apache.org by "james yong (JIRA)" <ji...@apache.org> on 2016/12/20 07:04:58 UTC

[jira] [Commented] (OFBIZ-6963) Single sign-on to OFBiz with CAS

    [ https://issues.apache.org/jira/browse/OFBIZ-6963?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15763469#comment-15763469 ] 

james yong commented on OFBIZ-6963:
-----------------------------------

I was looking at running CAS CAS Server directly under OFBiz and using it as the default authentication provider.

> Single sign-on to OFBiz with CAS
> --------------------------------
>
>                 Key: OFBIZ-6963
>                 URL: https://issues.apache.org/jira/browse/OFBIZ-6963
>             Project: OFBiz
>          Issue Type: Improvement
>          Components: ALL APPLICATIONS
>    Affects Versions: Trunk
>            Reporter: james yong
>
> OFBiz is made up of several web applications. 
> To allow the user to sign in only once, a unique token value is presented for verification each time the user navigates to an unvisited web application.
> This approach has the following limitations:
> 1) You cannot work with multiple windows, as there is only 1 valid token value at any time and other token values will be invalid in older-opened windows.
> 2) There is a need to refresh the whole page, so that all links will contain the valid token value.
> 3) Not easy to compose a page that get contents from different web applications in OFBiz
> Adding CAS SSO component as a core into OFBiz will remove the limitations mentioned above. 



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)