Skip to end of metadata
Go to start of metadata
Table of Contents

As of JASIG CAS Client for Java 3.1.3, the distribution includes Atlassian Confluence and Jira support. Support is enabled by a custom CAS authenticator that extends the default authenticators.

$CONFLUENCE_INSTALL Description

Icon

<extracted archive directory>/confluence

/opt/atlassian/confluence/confluence-3.0.1/confluence

Modify the web.xml

Add the CAS Filters to the end of the filter list.
(info) See Configuring the Jasig CAS Client for Java in the web.xml for parameters

$CONFLUENCE_INSTALL/WEB-INF/web.xml

Don't Forget To Change the URLs

Icon
 

Before the login filter-mapping add:

$CONFLUENCE_INSTALL/WEB-INF/web.xml

Add the Single Sign Out listener to the list of listener list too

$CONFLUENCE_INSTALL/WEB-INF/web.xml

Modify the seraph-config.xml

$CONFLUENCE_INSTALL/WEB-INF/classes/seraph-config.xml

Don't Forget To Change the URLs

Icon
 
CAS Authenticator

Comment out the DefaultAuthenticator and add in the JASIG CAS Confluence Authenticator

$CONFLUENCE_INSTALL/WEB-INF/classes/seraph-config.xml
CAS Logout instead of Confluence logout

(info) Atlassian doesn't support a config option yet (like Jira), please vote up the feature request here: http://jira.atlassian.com/browse/CONF-4931
To rely on the Single Sign Out functionality to sign off of Confluence we need to modify the logout link

  1. Copy $CONFLUENCE_INSTALL/WEB-INF/lib/confluence-x.x.x.jar to a temporary directory
    • mkdir /tmp/confluence-jar && cp WEB-INF/lib/confluence-3.0.1.jar /tmp/confluence-jar
  2. Unpack the jar
    • cd /tmp/confluence-jar && jar xvf confluence-3.0.1.jar
  3. Copy xwork.xml to $CONFLUENCE_INSTALL/WEB-INF/classes
    • cp xwork.xml $CONFLUENCE_INSTALL/WEB-INF/classes/ && cd $CONFLUENCE_INSTALL/WEB-INF/classes/
  4. Edit $CONFLUENCE_INSTALL/WEB-INF/classes/xwork.xml, find the logout action and comment out the success result and replace it with this one

    $CONFLUENCE_INSTALL/WEB-INF/classes/xwork.xml

     

     

     

     

CAS Jar Libs

Copy cas-client-core-3.1.x.jar and cas-client-integration-atlassian-3.1.x.jar to $CONFLUENCE_INSTALL/WEB-INF/lib

 

Troubleshooting

Characters Encoding

If you encounter issues with characters encoding you may experience a bug from CAS client CASC-122 - CasSingleSignOutFilter affects character encoding when integrated with Confluence Resolved . It could be fixed by applying the following steps :

  • Download the last version (2.0.2 today) of vt servlet filters here : http://code.google.com/p/vt-middleware/downloads/list
  • extract the file on your server, copy jars/vt-servlet-filters-xxx.jar (with xxx = the current version) in $CONFLUENCE_INSTALL/WEB-INF/lib
  • modify $CONFLUENCE_INSTALL/WEB-INF/web.xml already CASified  as well :
    • BEFORE all CAS filters, and especially before CasSingleSignOutFilter filter, add :
    • BEFORE all filter-mapping CAS parameters, and especially before "CasSingleSignOutFilter" filter-mapping, add the following :
  • Restart Confluence (or Jira). It should work.
  • No labels

1 Comment

  1. Can add a filter to bypass some URLs in the Confluence like this?

    and if I want to bypass the :

    /rpc/*, /images/*, /styles/*, /secure/Logout!default.jspa, /secure/applet/* 

    I must Install soulwing-casclient-0.5.jar and lib/jdom.jar into $CONFLUENCE/WEB-INF/lib. ???????http://www.soulwing.org/jira-cas.jsp

     

     

    From this page CASC-187 - Bypass feature Resolved , I don't know the steps to bypass the URL pattern /admin/, anyone can show me the details to bypass the pattern /admin/?

     Thanks.