android - Implement Mobile SSO with Jasig CAS -
i'm new jasig cas , task implement mobile sso several internal applications of our company , need on this.
the current status company:
already has jasig cas sso of web apps , customize mobile sso (my senior insists of utilizing system; rather implementing other mobile sso solutions).
we had our own local ca:
every mobile device in system has device certificate signed local ca.
these device certs can accessed via cert database service server side well.
what have in mind that:
for mobile client side (just take android default os): create service (token agent) native apps connects authenticate (sending device cert or encrypted info can decrypted server); receives authorization code (or tgt in jasig cas' world) , access token (service ticket)
for server side: customize jasig cas can authenticate client; generate tokens (tickets) , send them client's token agent.
my current solutions:
- for client side: i'm implementing service consumes restful api of jasig cas (following these posts: can use jasig cas server android app , working java rest client example. plus, service has other functions native applications can call service get/check authorization code (tgt) , access token (service ticket).
- for server side, i'm confused.
- what should do: customizing restful api or x509 support module of jasig cas.
- how can config address client agent send request ... hope can me problem, , please specific possible because i'm new jasig cas. thank in advance.
Comments
Post a Comment