Cas.net is an http module that allows any asp.net application to authenticate to a CAS server. We use this module as an authentication provider for Windows Sharepoint Services. I think that it should work for MOSS 2007 and OWA too.
The authentication mecanism is transparent to the application witch in return have a standard .NET user object. So in the application the user login is available with User.Identity.Name property.
In this version, the call to the CAS server is done only on the first call. Afterwards, authentication is based on .NET standand authentication mecanism.
The module is a dll that can be download here https://sourcesup.cru.fr/projects/cas4net and the installation is quite simple
Just drop casModule.dll in the BIN folder of the root directory of the application and add the following to the web.config file in the root directory
to indicate CAS urls and
an httpModules tag to declare the module.
Last, you have to disable any default authentication in asp.net by turning the authentication mode to None in the <system.web> section
As every request is intercepted by the module, only authenticated user gains access to the application. Of course you also have to deal with authorization, here every authenticated user is allowed to process the application.
For IIS 7, the configuration file is slightly different for the module part, so to better use the new IIS manager UI to have the job done. Add the module with the module config, the application setting with the application settings, disable all authentication module except anonymous.
Windows Sharepoint Services 3
As Windows Sahrepoint Services version 3 (WSS 3) is based on the .NET framework, this module can be used as an authentication provider. This should be also true for Microsoft Office Sharepoint Server 2007 (MOSS 2007), but i have not try yet.
The installation is as easy as standard asp.net application, the configuration is a little more intricate due to security configuration.
1. Copy the casModule.dll in the bin folder of sharepoint site collection. And do the following in the web.config file.
2. Add CAS server location in the appSettings tag
3. Declare the module
4. Modify the security policy to enable the module
and the location of the policy file is declare in
In the security file add the folliwing in the first CodeGroup tag
5. Last step modify the site collection configuration to enable sso and add a membership provider through Sharepoint administration site.
To be done
Some more work and test should be done in order to :
I am also planning to rapidly test this module in an IIS 7 autentication pipe line. I have no idea yet on how to handle the user id the application.
And of course other your feedback.
et pour les français vous pouvez lire mon article sur techHeadBrothers.com