CAS Authenticate through another subdomain












0















At my place of employment, we do not control what applications are CAS authorized, but have existing CAS authorization for an application hosted at foobar.com/app-one.



When a user signs into this, they are correctly authenticated, and are served the application.
Recently, we have added a new application, foobar.com/app-two. Unfortunately when signing in, the user is served a message "Application Not Authorized to use CAS". For reference, both of these have CAS server validation disabled.



However, if a user accesses foobar.com/app-one, authenticates themselves, then navigates to foobar.com/app-two, the page is served without issue.



How would I have an unauthenticated user access app-two, get directed to the authorized login component of app-one, and then be redirected to app-two?



EDIT: Could I pass a new redirect location in my request or something similar?






cas jasig phpcas







share|improve this question

























  • The problem is, why Application Not Authorized to use CAS problem exists for app2? Maybe foobar.com/app-two is not registered as a valid service? apereo.github.io/cas/5.3.x/installation/Service-Management.html

    – Ng Sek Long
    Nov 27 '18 at 7:17











  • @NgSekLong The app-two is not registered with the CAS server. I am hoping to find a way to authenticate users with the foobar.com/app-one service which IS valid. and then serve app-two once the user is authenticated

    – rborum
    Nov 27 '18 at 13:51











  • So you just want to redirect to app-two from app-one? Can you make a page in app-one, and do something like this: http://cas.example.com?service=http://foobar.com/app-one/redirect?redirect_uri=http%3A%2F%2Ffoobar.com%2Fapp-two, will this work for you?

    – Ng Sek Long
    Nov 28 '18 at 10:37
















0















At my place of employment, we do not control what applications are CAS authorized, but have existing CAS authorization for an application hosted at foobar.com/app-one.



When a user signs into this, they are correctly authenticated, and are served the application.
Recently, we have added a new application, foobar.com/app-two. Unfortunately when signing in, the user is served a message "Application Not Authorized to use CAS". For reference, both of these have CAS server validation disabled.



However, if a user accesses foobar.com/app-one, authenticates themselves, then navigates to foobar.com/app-two, the page is served without issue.



How would I have an unauthenticated user access app-two, get directed to the authorized login component of app-one, and then be redirected to app-two?



EDIT: Could I pass a new redirect location in my request or something similar?






cas jasig phpcas







share|improve this question

























  • The problem is, why Application Not Authorized to use CAS problem exists for app2? Maybe foobar.com/app-two is not registered as a valid service? apereo.github.io/cas/5.3.x/installation/Service-Management.html

    – Ng Sek Long
    Nov 27 '18 at 7:17











  • @NgSekLong The app-two is not registered with the CAS server. I am hoping to find a way to authenticate users with the foobar.com/app-one service which IS valid. and then serve app-two once the user is authenticated

    – rborum
    Nov 27 '18 at 13:51











  • So you just want to redirect to app-two from app-one? Can you make a page in app-one, and do something like this: http://cas.example.com?service=http://foobar.com/app-one/redirect?redirect_uri=http%3A%2F%2Ffoobar.com%2Fapp-two, will this work for you?

    – Ng Sek Long
    Nov 28 '18 at 10:37














0












0








0








At my place of employment, we do not control what applications are CAS authorized, but have existing CAS authorization for an application hosted at foobar.com/app-one.



When a user signs into this, they are correctly authenticated, and are served the application.
Recently, we have added a new application, foobar.com/app-two. Unfortunately when signing in, the user is served a message "Application Not Authorized to use CAS". For reference, both of these have CAS server validation disabled.



However, if a user accesses foobar.com/app-one, authenticates themselves, then navigates to foobar.com/app-two, the page is served without issue.



How would I have an unauthenticated user access app-two, get directed to the authorized login component of app-one, and then be redirected to app-two?



EDIT: Could I pass a new redirect location in my request or something similar?






cas jasig phpcas







share|improve this question
















At my place of employment, we do not control what applications are CAS authorized, but have existing CAS authorization for an application hosted at foobar.com/app-one.



When a user signs into this, they are correctly authenticated, and are served the application.
Recently, we have added a new application, foobar.com/app-two. Unfortunately when signing in, the user is served a message "Application Not Authorized to use CAS". For reference, both of these have CAS server validation disabled.



However, if a user accesses foobar.com/app-one, authenticates themselves, then navigates to foobar.com/app-two, the page is served without issue.



How would I have an unauthenticated user access app-two, get directed to the authorized login component of app-one, and then be redirected to app-two?



EDIT: Could I pass a new redirect location in my request or something similar?






cas jasig phpcas




cas jasig phpcas






share|improve this question















share|improve this question













share|improve this question




share|improve this question








edited Nov 27 '18 at 16:21







rborum

















asked Nov 27 '18 at 4:40









rborumrborum

718




718













  • The problem is, why Application Not Authorized to use CAS problem exists for app2? Maybe foobar.com/app-two is not registered as a valid service? apereo.github.io/cas/5.3.x/installation/Service-Management.html

    – Ng Sek Long
    Nov 27 '18 at 7:17











  • @NgSekLong The app-two is not registered with the CAS server. I am hoping to find a way to authenticate users with the foobar.com/app-one service which IS valid. and then serve app-two once the user is authenticated

    – rborum
    Nov 27 '18 at 13:51











  • So you just want to redirect to app-two from app-one? Can you make a page in app-one, and do something like this: http://cas.example.com?service=http://foobar.com/app-one/redirect?redirect_uri=http%3A%2F%2Ffoobar.com%2Fapp-two, will this work for you?

    – Ng Sek Long
    Nov 28 '18 at 10:37



















  • The problem is, why Application Not Authorized to use CAS problem exists for app2? Maybe foobar.com/app-two is not registered as a valid service? apereo.github.io/cas/5.3.x/installation/Service-Management.html

    – Ng Sek Long
    Nov 27 '18 at 7:17











  • @NgSekLong The app-two is not registered with the CAS server. I am hoping to find a way to authenticate users with the foobar.com/app-one service which IS valid. and then serve app-two once the user is authenticated

    – rborum
    Nov 27 '18 at 13:51











  • So you just want to redirect to app-two from app-one? Can you make a page in app-one, and do something like this: http://cas.example.com?service=http://foobar.com/app-one/redirect?redirect_uri=http%3A%2F%2Ffoobar.com%2Fapp-two, will this work for you?

    – Ng Sek Long
    Nov 28 '18 at 10:37

















The problem is, why Application Not Authorized to use CAS problem exists for app2? Maybe foobar.com/app-two is not registered as a valid service? apereo.github.io/cas/5.3.x/installation/Service-Management.html

– Ng Sek Long
Nov 27 '18 at 7:17





The problem is, why Application Not Authorized to use CAS problem exists for app2? Maybe foobar.com/app-two is not registered as a valid service? apereo.github.io/cas/5.3.x/installation/Service-Management.html

– Ng Sek Long
Nov 27 '18 at 7:17













@NgSekLong The app-two is not registered with the CAS server. I am hoping to find a way to authenticate users with the foobar.com/app-one service which IS valid. and then serve app-two once the user is authenticated

– rborum
Nov 27 '18 at 13:51





@NgSekLong The app-two is not registered with the CAS server. I am hoping to find a way to authenticate users with the foobar.com/app-one service which IS valid. and then serve app-two once the user is authenticated

– rborum
Nov 27 '18 at 13:51













So you just want to redirect to app-two from app-one? Can you make a page in app-one, and do something like this: http://cas.example.com?service=http://foobar.com/app-one/redirect?redirect_uri=http%3A%2F%2Ffoobar.com%2Fapp-two, will this work for you?

– Ng Sek Long
Nov 28 '18 at 10:37





So you just want to redirect to app-two from app-one? Can you make a page in app-one, and do something like this: http://cas.example.com?service=http://foobar.com/app-one/redirect?redirect_uri=http%3A%2F%2Ffoobar.com%2Fapp-two, will this work for you?

– Ng Sek Long
Nov 28 '18 at 10:37












0






active

oldest

votes











Your Answer






StackExchange.ifUsing("editor", function () {
StackExchange.using("externalEditor", function () {
StackExchange.using("snippets", function () {
StackExchange.snippets.init();
});
});
}, "code-snippets");

StackExchange.ready(function() {
var channelOptions = {
tags: "".split(" "),
id: "1"
};
initTagRenderer("".split(" "), "".split(" "), channelOptions);

StackExchange.using("externalEditor", function() {
// Have to fire editor after snippets, if snippets enabled
if (StackExchange.settings.snippets.snippetsEnabled) {
StackExchange.using("snippets", function() {
createEditor();
});
}
else {
createEditor();
}
});

function createEditor() {
StackExchange.prepareEditor({
heartbeatType: 'answer',
autoActivateHeartbeat: false,
convertImagesToLinks: true,
noModals: true,
showLowRepImageUploadWarning: true,
reputationToPostImages: 10,
bindNavPrevention: true,
postfix: "",
imageUploader: {
brandingHtml: "Powered by u003ca class="icon-imgur-white" href="https://imgur.com/"u003eu003c/au003e",
contentPolicyHtml: "User contributions licensed under u003ca href="https://creativecommons.org/licenses/by-sa/3.0/"u003ecc by-sa 3.0 with attribution requiredu003c/au003e u003ca href="https://stackoverflow.com/legal/content-policy"u003e(content policy)u003c/au003e",
allowUrls: true
},
onDemand: true,
discardSelector: ".discard-answer"
,immediatelyShowMarkdownHelp:true
});


}
});














draft saved

draft discarded


















StackExchange.ready(
function () {
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fstackoverflow.com%2fquestions%2f53492884%2fcas-authenticate-through-another-subdomain%23new-answer', 'question_page');
}
);

Post as a guest















Required, but never shown

























0






active

oldest

votes








0






active

oldest

votes









active

oldest

votes






active

oldest

votes
















draft saved

draft discarded




















































Thanks for contributing an answer to Stack Overflow!


  • Please be sure to answer the question. Provide details and share your research!

But avoid



  • Asking for help, clarification, or responding to other answers.

  • Making statements based on opinion; back them up with references or personal experience.


To learn more, see our tips on writing great answers.




draft saved


draft discarded














StackExchange.ready(
function () {
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fstackoverflow.com%2fquestions%2f53492884%2fcas-authenticate-through-another-subdomain%23new-answer', 'question_page');
}
);

Post as a guest















Required, but never shown





















































Required, but never shown














Required, but never shown












Required, but never shown







Required, but never shown

































Required, but never shown














Required, but never shown












Required, but never shown







Required, but never shown







-

Popular posts from this blog

Lallio

Image
Coordenadas: 45° 40' N 9° 38' E Lallio      Comuna    Lallio Localização de Lallio na Itália Coordenadas 45° 40' N 9° 38' E Região Lombardia Província Bérgamo Área - Total 2 km² Altitude 216 m População  - Total 3 826     • Densidade 1 913 hab./km² Outros dados Comunas limítrofes Bergamo, Dalmine, Stezzano, Treviolo Código ISTAT 016123 Código cadastral E422 Código postal 24040 Prefixo telefônico 035 Website www.comune.lallio.bg.it Lallio é uma comuna italiana da região da Lombardia, província de Bérgamo, com cerca de 3.826 habitantes. Estende-se por uma área de 2 km², tendo uma densidade populacional de 1913 hab/km². Faz fronteira com Bergamo, Dalmine, Stezzano, Treviolo. [ 1 ] [ 2 ] [ 3 ] Demografia | Variação demográfica do município entre 1861 e 2011 [ 3 ] Fonte : Istituto Nazionale di Statistica (ISTAT) - Elabor...
Read more

Unable to find Lightning Node

Image
2 I have successfully installed and synced my lightning node (Raspiblitz). I see my public ip on port 8333 has 8 conns. However, when I check my node on 1ml.com my node is not found. I did forward port 8333 and 9735 on my router. Should I connect to a peer or create a channel before my node is visible for the outside? lightning-network lightning-network-daemon share | improve this question asked 1 hour ago Bart DV Bart DV 31 3 add a comment  |  ...
Read more

Futebolista

Image
Ronaldo primeiro jogador a ser eleito por três vezes o melhor jogador do mundo pela FIFA. Ronaldinho Gaúcho atuando pelo Barcelona onde foi duas vezes eleito o melhor jogador do mundo pela FIFA. Kaká atuando pelo Milan onde foi eleito em 2007 o melhor jogador do mundo pela FIFA. Lothar Matthäus primeiro jogador a ser eleito o melhor jogador do mundo pela FIFA em 1991 pela Inter de Milão. Neymar durante partida contra a Escócia, em 27 de março de 2011. Crianças praticando futebol. Robinho, futebolista brasileiro, em 15 de novembro de 2006. Atletas do Chelsea, da Inglaterra. A venda de camisas com nome e número dos jogadores é uma grande fonte de arrecadação. Jürgen Klinsmann atuou como jogador e foi treinador da Alemanha. Estádio de futebol, principal local onde laboram os jogadores. O jogador de futebol , ou Futebolista , é um atleta profissional de futebol, e cuja prática do desporto coletivo é fundamental. Estes trabalhadores sã...
Read more