So what to do?
I can not post all of our source code because of "some security" issues :-)
Steps:
1. Edit portel-ext.properties (or portal-impl.jar//portal.properties)
1.1 Add/Edit the CAS configuration lines
##
## CAS
##
cas.auth.enabled=true
#
cas.import.from.ldap=false
#
cas.login.url=/portal/cas-web/login
cas.logout.url=/portal/html/common/was_logout.jsp
cas.service.url=/portal/c/portal/login
cas.validate.url=/portal/cas-web/proxyValidate
The bold lines say Liferay where to login or logout
2. Create Java-Classes for decrypting the WebSphere LTPA-Token
Have a look at these examples
http://blog.offbytwo.com/2007/08/21/working-with-lightweight-third-party-authentication-ltpa/
http://offbytwo.googlecode.com/svn/trunk/bitsandpieces/LTPAUtils/
and copy them to WEB-INF/classes/
3. Add AutoLogin-Classes (Step 2) to portal-ext.properties
auto.login.hooks=
4. Add was_logout.jsp to specify the cas-logout-path (see step 1)
Content (example):
<%@ page import="java.util.*" %>
<%@ page import="com.liferay.portal.util.*;" %>
<%-- auto-submitted by javascript --%>
<%@ page import="com.liferay.portal.util.*;" %>
<%-- auto-submitted by javascript --%>
5. Create new Sign in portlet or edit the delivered sign in portlet
Content of view.jsp (example):
<% if (!themeDisplay.isSignedIn()) { %>
<%-- /*
