posted 16 years ago
I haven't done any CAS programming but I looked at it for a project a while back (3-4 years). I seemed to remember that it was a filter and web.xml defined roles based system.
As far as authentication, you might be able to just add the CAS filter and then define a whole webapp security constraint to force a CAS login screen (if needed). The filter should set up the request object so that you can get a Principal object for the user.
For JForum's SSO, you can then use the RemoteUserSSO class to verify that the valid principal has a minimum JForum User table entry. E.g., userName, default e-mail, etc.
If you want to get more information about the user, e.g. their real name, e-mail, etc. You'll have to create your own SSO class to query CAS for this info.
Integrating CAS groups/roles into jForum roles might be possible, but it would be a fairly challenging bit of coding.
[originally posted on jforum.net by monroe]