[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: CAS'ifying Zimbra

To: zimbra-hied-admins <zimbra-hied-admins@sfu.ca>
Subject: Re: CAS'ifying Zimbra
From: Rich Graves <rgraves@carleton.edu>
Date: Tue, 25 Oct 2011 14:53:51 -0500 (CDT)
In-reply-to: <84b9b41a-ece4-418d-bc20-ab507b1a2cae@ksupo8.kennesaw.edu>
List-help: <mailto:zimbra-hied-admins-request@sfu.ca?subject=help> (List Instructions)
List-id: <zimbra-hied-admins.sfu.ca>
List-owner: <mailto:owner-zimbra-hied-admins@sfu.ca>
List-unsubscribe: <mailto:zimbra-hied-admins-request@sfu.ca?subject=unsubscribe>

Don't set zimbraWebClientLoginURL. Instead, add some code to login.jsp (JavaScript or JSP, as desired) that checks whether a ?local=y parameter has been added to the URL, and if not, redirect to your preauth.jsp.

Your CAS login page would need to have some sort of lookup table to create a "use local account" backlink for certain referers.

On the flip side, you could serve the local Zimbra login page by default, and send clients to CAS if they have a domain-wide "CAS user" cookie set or if they click on a "log on with CAS" link.
-- 
Rich Graves http://claimid.com/rcgraves
Carleton.edu Sr UNIX and Security Admin
CMC135: 507-222-7079 Cell: 952-292-6529

References:
- CAS'ifying Zimbra
  - From: Steve Elliott <selliott@kennesaw.edu>

Prev by Date: Re: CAS'ifying Zimbra
Next by Date: Re: Showing Department and Other Info in People Search and Autocomplete
Previous by thread: Re: CAS'ifying Zimbra
Next by thread: 7.1.3 - security update. Anyone concerned?
Index(es):
- Date
- Thread