You are currently accessing CAS over a non-secure connection. Single Sign On WILL NOT WORK. In order to have single sign on work, you MUST log in over HTTPS.
CAS is configured to accept a static list of users for primary authentication. Please be advised that this is ONLY useful for demo purposes. It is recommended that you connect CAS to LDAP, JDBC, etc instead.
HTTPS and IMAPS wildcard