Class CasProxyCallbackController
In: lib/casclient/frameworks/rails/cas_proxy_callback_controller.rb
Parent: ActionController::Base

Rails controller that responds to proxy generating ticket callbacks from the CAS server and allows for retrieval of those PGTs.

Methods

Public Instance methods

Receives a proxy granting ticket from the CAS server and stores it in the database. Note that this action should ALWAYS be called via https, otherwise you have a gaping security hole. In fact, the JA-SIG implementation of the CAS server will refuse to send PGTs to non-https URLs.

Retreives a proxy granting ticket, sends it to output, and deletes the pgt from session storage. Note that this action should ALWAYS be called via https, otherwise you have a gaping security hole — in fact, the action will not work if the request is not made via SSL or is not local (we allow for local non-SSL requests since this allows for the use of reverse HTTPS proxies like Pound).

[Validate]