What are the differences between CAS (Central Authentication Service) and Keycloak (Identity and Access Management)?
11
votes
CAS server's token must be verified by contacting the CAS server (so both user and app need to access the CAS server), while Keycloack's token are digitally signed so the app just need to verify the digital signature without contacting the Keycloack server.
- Martheen
thanks a lot helps
- manvendra
CAS Service Tickets are signed and can be verified without contacting the CAS Server. apereo.github.io/cas/development/installation/…
- mnesarco
There should be many differences, but in practice both products provide centraliced Authentication and SSO with pluggable Authentication Mechanisms. One advantage of CAS over Keycloak is that you can deploy CAS on any JEE Application Server, while Keycloak is a standalone server integrated with Wildfly. So if you deploy your apps in Tomcat and want to use keycloak, you must install and run keycloak server in its own port, so you will end up running two application servers.
- mnesarco
Please refer to gist.github.com/bmaupin/6878fae9abcb63ef43f8ac9b9de8fafd
- Ghasem Sadeghi
