android - Implement Mobile SSO with Jasig CAS -


i'm new jasig cas , task implement mobile sso several internal applications of our company , need on this.

the current status company:

  1. already has jasig cas sso of web apps , customize mobile sso (my senior insists of utilizing system; rather implementing other mobile sso solutions).

  2. we had our own local ca:

    • every mobile device in system has device certificate signed local ca.

    • these device certs can accessed via cert database service server side well.

what have in mind that:

  1. for mobile client side (just take android default os): create service (token agent) native apps connects authenticate (sending device cert or encrypted info can decrypted server); receives authorization code (or tgt in jasig cas' world) , access token (service ticket)

  2. for server side: customize jasig cas can authenticate client; generate tokens (tickets) , send them client's token agent.

    my current solutions:

    • for client side: i'm implementing service consumes restful api of jasig cas (following these posts: can use jasig cas server android app , working java rest client example. plus, service has other functions native applications can call service get/check authorization code (tgt) , access token (service ticket).
    • for server side, i'm confused.
    • what should do: customizing restful api or x509 support module of jasig cas.
    • how can config address client agent send request ... hope can me problem, , please specific possible because i'm new jasig cas. thank in advance.


Comments

Popular posts from this blog

c++ - Difference between pre and post decrement in recursive function argument -

php - Nothing but 'run(); ' when browsing to my local project, how do I fix this? -

php - How can I echo out this array? -