Authenticator Jasig CAS

Last modified by Admin on 2021/03/17 21:44

cogXWiki authenticator based on Jasig CAS
TypeJAR
Category
Developed by

Petr Abrahamczik

Active Installs4
Rating
1 Votes
LicenseGNU Lesser General Public License 2.1

Installable with the Extension Manager

Description

Authenticate user on main wiki based on Jasig CAS server. It creates XWiki users if they have never logged in before and synchronizes membership to XWiki groups based on membership to CAS group field mapping. It supports CAS 2.0 and SAML 1.1 protocol. SAML protocol can be used for attributes and group membership synchronization.

Prerequisites & Installation Instructions

# xwiki.org - example

# CAS authentication
xwiki.authentication.authclass=org.xwiki.contrib.authentication.cas.XWikiCASAuthenticator

# CAS server url (i.e. https://localhost:8443/cas)
xwiki.authentication.cas.server=https://localhost:8443/cas

# possible values are CAS20 or SAML11
xwiki.authentication.cas.protocol=SAML11

# user not authorized page (i.e. /bin/view/XWiki/XWikiCASAccessDenied). If not set a HTTP status 401 is returned.
#xwiki.authentication.cas.access_denied_page=/bin/view/XWiki/XWikiCASAuthFailed

# (only SAML11) mapping between XWiki user profile values and CAS attributes. Example (xwiki-attribute=cas-attribute,...)
xwiki.authentication.cas.fields_mapping=last_name=lastName,first_name=firstName,email=email

# 0 or 1 if create XWiki user after log in
xwiki.authentication.cas.create_user=1

# 0 or 1 if update user attributes after every log in
xwiki.authentication.cas.update_user=1

# (only SAML11) CAS attribute name which contains group membership
xwiki.authentication.cas.group_field=roles

# (only SAML11) Maps XWiki groups to CAS groups, separator is "|".
xwiki.authentication.cas.group_mapping=XWiki.XWikiAdminGroup=cn=AdminRole,ou=groups,o=domain,c=com|\
                                     XWiki.CASUsers=ou=groups,o=domain,c=com|\
                                     XWiki.Organisation=cn=Org1,ou=groups,o=domain,c=com

Dependencies

Dependencies for this extension (org.xwiki.contrib.authentication:authenticator-jasig-cas 1.0):

  • org.jasig.cas.client:cas-client-core 3.2.1
Tags:
    

Get Connected