I'm trying to use CAS for Single Sign On between Liferay and a PHP webapp.
I installed JASIG CAS webapp, created a certificate with keytools and configured Liferay through its administrative GUI (Setting>Authentication>CAS tab) as follows:
When I click on "Sign in" in Liferay menu I'm forwarded to the CAS login page (with the "dirty trick" username==password: I did not configure LDAP, as I'm going to explain below) and then I'm redirected to Liferay again, but I'm not logged in: I see the LR login form again. So I guess that is not working.
The PHP web application , on the other hand, seems to work flawlessly.
So my questions are:
- is there something wrong in my LR configuration?
- is the LDAP mandatory? I'd rather have Liferay do the master authentication provider and signalling to CAS that the user is indeed legit, and then use CAS to propagate the ticket to the other webapp; do I have to develop some CAS plugin to make it work this way?
