Single Sign On (SSO) and Other Things
Posted by jonchase
I’ve decided to go ahead and try to get JA-SIG’s CAS configured alongside Acegi (Spring Security). I gave the Acegi docs and the CAS demo docs a couple of reads and it looks like it shouldn’t be too hard to get things set up properly. I think the thing that befuddles me most is all of the SSL configuration, but that’s going to be a requirement with any (secure) option, so I figure I might as well go the CAS/Acegi route since someone else has already documented most of the work for me.
Any time I find myself working on security of any sort for an application, I realize how difficult security is to get right. It’s one of those fields that has SO many variables (what the heck is an X.509 certificate?!). But thankfully it’s a problem a lot of people have already encountered, and therefore there are lots of how to’s out there. Thanks goodness:).
On another note, I realized that I’ve never laid out any big picture ideas for SendAlong on this blog. Seeing as how the name of the blog is “SendAlong Blog”, in the near future I am going to make more of an effort to write up some of the details about SendAlong itself.
Leave a Reply
Subscribe to Jon's Blog