rubycas

rubycas CAS over ssl, sites over non-ssl

怎甘沉沦 提交于 2019-12-11 08:28:30
问题 I'm trying to determine how much of a security risk I'm looking at when I have rubycas itself running over https, but my actual sites running under http. the reason I'm faced with this issue is that the sites are deployed on heroku, which means ssl is either really expensive or really a pain. In addition to the login details, i also pass user rolls (authorization) to each site that is then stored in a session. Any input is greatly appreciated. 回答1: The problem with this approach is that

rubycas-client authentification and local session

为君一笑 提交于 2019-12-08 07:26:48
问题 I am using ruby-cas client, for an authentification based on a CAS. I would like to link the ruby_cas authentication to my application : when we log in with cas, in additon to the CAS session created, a session for my application is also created. What should i do? thanks 回答1: You could use devise and devise_cas_authenticatable This should work for Rails 3. I am trying to make it work with rails 4 but rubycas-client (needed for devise_cas_authenticatable) is giving me a lot of trouble. However

rubycas-client authentification and local session

雨燕双飞 提交于 2019-12-07 19:31:24
I am using ruby-cas client, for an authentification based on a CAS. I would like to link the ruby_cas authentication to my application : when we log in with cas, in additon to the CAS session created, a session for my application is also created. What should i do? thanks You could use devise and devise_cas_authenticatable This should work for Rails 3. I am trying to make it work with rails 4 but rubycas-client (needed for devise_cas_authenticatable) is giving me a lot of trouble. However I haven't surrendered yet :) 来源: https://stackoverflow.com/questions/21615670/rubycas-client
订阅 rubycas