Child pages
  • CAS token manager (addon)
Skip to end of metadata
Go to start of metadata

 

Icon

This documentation shows how to install esup-cas-tokenmanager (view Github repo)

Cas addon Ticket Manager

Project introduction

CAS Addon Ticket Manager aims to integrate in the CAS server. It exposes some TicketRegistry's data through a WebService. An external webapp will be able to manage user tickets. This addon brings authentication meta data built on top of CAS credentials.

Requirements

Some requirements are optionnal

  • CAS 4.0.0+
  • LDAP Authentication
  • Long term session (optionnal)
  • Authentication through REST API (optionnal)

Install

CAS : pom.xml

pom.xml

cas-server-webapp : pom.xml

pom.xml

cas-server-webapp : web.xml

Please update cors.allowOrigin to avoid non-authorized apps to access the token-service REST API

web.xml

cas-server-webapp: securityContext.xml

securityContext.xml

cas-server-webapp : token-service-servlet.xml

This file doesn't exist and contains all configuration relative to the addon. Please copy/paste the following code in a file : cas/cas-server-webapp/src/main/webapp/WEB-INF/token-service-servlet.xml

 

token-service-servlet.xml

 

Config for optionnal features

cas-server-webapp : login-webflow.xml

login-webflow.xml

cas-server-webapp: deployerConfigContext.xml

deployerConfigContext.xml

cas-server-webapp: casLoginView.jsp

casLoginView.jsp

Support new Credentials in CAS REST API

If you want to get access to authentication meta data through CAS REST API, please update the following file : src/main/java/org/jasig/cas/integration/restlet/TicketResource.java in the obtainCredentials method. 

TicketResource.java

Ticket management webapp

Configuration

Open config.properties and update with your own informations

  • ldap.authn.baseDn : root LDAP branch

  • ldap.baseSearch : LDAP branch where users are stored

  • ldap.group.base : LDAP branch where groups are stored

  • ldap.group.attributeName : LDAP attribute containing group name

  • security.adminRole : adminRole must correspond to a LDAP group. 

    • Let's take a group with the name admin. Users that belongs to this group will be given the security role : ROLE_ADMIN (case sensitive)

Build

Simply run

$

Deploy

Copy/paste target/cas-ticket-management.war in your Tomcat's webapp folder.

Integration as a portlet in uPortal

This servlet can be easily integrate in uPortal into an iframe.
User interface are built on top of Twitter Bootstrap 3.1 and therefore are responsive.
This servlet integrates a JavaScript snippet made by Pascal Rigaux to resize an iframe depending on its content. If you want this feature to work you will need to include a JavaScript snippet in the portal too (view Github repo : https://github.com/EsupPortail/iframe-autoheight-using-postMessage).

  • No labels