WSO2 Identity Server and SSO for custom application

Question

We're currently evaluating the WSO2 Identity Server and I got a few questions about it:

1. Could the Identity Server be used as an SSO provider for custom applications deployed (just like CAS)? Is there a client API to access the server programatically to verify a ticket?
2. Is there a way to customize the login page of the Identity Server or substitute it with my own (and how)?
3. Is the Identity Server able to login users with digital certificates?

Answer 1

1. There is a good explanation here for your first question.
2. I believe you can download the source of Identity Server, modify the login page and then build. WSO2 Identity Server documentation

Answer 2

3- You can write a custom authenticator according to your requirement and plug it, dropping it at repository/components/dropins and editing repository/conf/security/authenticators.xml with the priority you give for this authentication mechanism.

You can refer existing authentictors' code, to get an idea at http://svn.wso2.org/repos/wso2/carbon/platform/tags/turing-chunk01/components/authenticators/