-
Notifications
You must be signed in to change notification settings - Fork 2
ALA CAS openid integration
Martin Bohun edited this page May 6, 2015
·
57 revisions
###notes The best/easiest (if not the only) approach to upgrade your existing cas project is:
- Decide which version of jasig cas do you need; in our case we want to use the jasig cas version with "the best support" for OpenID, however we have to take into the consideration that Google just deprecated OpenID (at the end of April 2015, see: https://developers.google.com/identity/protocols/OpenID2) in favour of OpenID Connect
###old notes
- current version of jasig cas used by ala-cas is 3.4.2 - this might be a problem/constraint if some of the functionality related to openid integration is not available in the currently used older version 3.4.2
- possible jasig cas upgrade:
- 3.5.3 simple upgrade, build succeeded, looks promising has to deploy/install and test this version; we might get lucky; no we didn't, it was not starting/running.
- 4.0.1 simple upgrade, build failed (this would clearly require to update the ala-cas component first)
- simple/naive search for ("any") openid related files in the both latest stable jasig cas streams versions:
bash-3.2$ find ~/src/cas-4.0.1 -type file | grep openid | grep -v test | sed -e 's/^.*\/cas\-[0-9]\.[0-9]\.[0-9]\///g'
cas-server-support-openid/NOTICE
cas-server-support-openid/pom.xml
cas-server-support-openid/src/main/java/org/jasig/cas/support/openid/authentication/handler/support/OpenIdCredentialsAuthenticationHandler.java
cas-server-support-openid/src/main/java/org/jasig/cas/support/openid/authentication/principal/OpenIdCredential.java
cas-server-support-openid/src/main/java/org/jasig/cas/support/openid/authentication/principal/OpenIdPrincipalResolver.java
cas-server-support-openid/src/main/java/org/jasig/cas/support/openid/authentication/principal/OpenIdService.java
cas-server-support-openid/src/main/java/org/jasig/cas/support/openid/web/flow/OpenIdSingleSignOnAction.java
cas-server-support-openid/src/main/java/org/jasig/cas/support/openid/web/mvc/SmartOpenIdController.java
cas-server-support-openid/src/main/java/org/jasig/cas/support/openid/web/OpenIdProviderController.java
cas-server-support-openid/src/main/java/org/jasig/cas/support/openid/web/support/DefaultOpenIdUserNameExtractor.java
cas-server-support-openid/src/main/java/org/jasig/cas/support/openid/web/support/OpenIdArgumentExtractor.java
cas-server-support-openid/src/main/java/org/jasig/cas/support/openid/web/support/OpenIdPostUrlHandlerMapping.java
cas-server-support-openid/src/main/java/org/jasig/cas/support/openid/web/support/OpenIdUserNameExtractor.java
cas-server-support-openid/src/site/site.xml
cas-server-webapp/src/main/webapp/WEB-INF/view/jsp/protocol/openid/casOpenIdAssociationFailureView.jsp
cas-server-webapp/src/main/webapp/WEB-INF/view/jsp/protocol/openid/casOpenIdAssociationSuccessView.jsp
cas-server-webapp/src/main/webapp/WEB-INF/view/jsp/protocol/openid/casOpenIdServiceFailureView.jsp
cas-server-webapp/src/main/webapp/WEB-INF/view/jsp/protocol/openid/casOpenIdServiceSuccessView.jsp
cas-server-webapp/src/main/webapp/WEB-INF/view/jsp/protocol/openid/user.jsp
bash-3.2$ find ~/src/cas-3.5.3 -type file | grep openid | grep -v test | sed -e 's/^.*\/cas\-[0-9]\.[0-9]\.[0-9]\///g'
cas-server-support-openid/NOTICE
cas-server-support-openid/pom.xml
cas-server-support-openid/src/main/java/org/jasig/cas/support/openid/authentication/handler/support/OpenIdCredentialsAuthenticationHandler.java
cas-server-support-openid/src/main/java/org/jasig/cas/support/openid/authentication/principal/OpenIdCredentials.java
cas-server-support-openid/src/main/java/org/jasig/cas/support/openid/authentication/principal/OpenIdCredentialsToPrincipalResolver.java
cas-server-support-openid/src/main/java/org/jasig/cas/support/openid/authentication/principal/OpenIdService.java
cas-server-support-openid/src/main/java/org/jasig/cas/support/openid/web/flow/OpenIdSingleSignOnAction.java
cas-server-support-openid/src/main/java/org/jasig/cas/support/openid/web/mvc/SmartOpenIdController.java
cas-server-support-openid/src/main/java/org/jasig/cas/support/openid/web/support/DefaultOpenIdUserNameExtractor.java
cas-server-support-openid/src/main/java/org/jasig/cas/support/openid/web/support/OpenIdArgumentExtractor.java
cas-server-support-openid/src/main/java/org/jasig/cas/support/openid/web/support/OpenIdPostUrlHandlerMapping.java
cas-server-support-openid/src/main/java/org/jasig/cas/support/openid/web/support/OpenIdUserNameExtractor.java
cas-server-webapp/src/main/webapp/WEB-INF/view/jsp/protocol/openid/casOpenIdAssociationFailureView.jsp
cas-server-webapp/src/main/webapp/WEB-INF/view/jsp/protocol/openid/casOpenIdAssociationSuccessView.jsp
cas-server-webapp/src/main/webapp/WEB-INF/view/jsp/protocol/openid/casOpenIdServiceFailureView.jsp
cas-server-webapp/src/main/webapp/WEB-INF/view/jsp/protocol/openid/casOpenIdServiceSuccessView.jsp
cas-server-webapp/src/main/webapp/WEB-INF/view/jsp/protocol/openid/user.jsp
bash-3.2$ find ~/src/cas-3.4.2 -type file | grep openid | grep -v test | sed -e 's/^.*\/cas\-[0-9]\.[0-9]\.[0-9]\///g'
cas-server-support-openid/pom.xml
cas-server-support-openid/src/main/java/org/jasig/cas/support/openid/authentication/handler/support/OpenIdCredentialsAuthenticationHandler.java
cas-server-support-openid/src/main/java/org/jasig/cas/support/openid/authentication/principal/OpenIdCredentials.java
cas-server-support-openid/src/main/java/org/jasig/cas/support/openid/authentication/principal/OpenIdCredentialsToPrincipalResolver.java
cas-server-support-openid/src/main/java/org/jasig/cas/support/openid/authentication/principal/OpenIdService.java
cas-server-support-openid/src/main/java/org/jasig/cas/support/openid/web/flow/OpenIdSingleSignOnAction.java
cas-server-support-openid/src/main/java/org/jasig/cas/support/openid/web/support/DefaultOpenIdUserNameExtractor.java
cas-server-support-openid/src/main/java/org/jasig/cas/support/openid/web/support/OpenIdArgumentExtractor.java
cas-server-support-openid/src/main/java/org/jasig/cas/support/openid/web/support/OpenIdPostUrlHandlerMapping.java
cas-server-support-openid/src/main/java/org/jasig/cas/support/openid/web/support/OpenIdUserNameExtractor.java
cas-server-webapp/src/main/webapp/WEB-INF/view/jsp/protocol/openid/casOpenIdServiceFailureView.jsp
cas-server-webapp/src/main/webapp/WEB-INF/view/jsp/protocol/openid/casOpenIdServiceSuccessView.jsp
cas-server-webapp/src/main/webapp/WEB-INF/view/jsp/protocol/openid/user.jsp
-
cas-pac4j-oauth-demo
cas-pac4j-oauth-client-demois a demo app of how to use jasig cas to delegate/forward authentication to an OpenID provider (google, facebook, etc.)
| jasig cas version | ala-cas upgrade result |
|---|---|
| 3.4.2 | OK (currently used) |
| 3.4.2.1 | OK |
| 3.4.3 | "CAS is unavailable" |
| 3.4.3.1 | "CAS is unavailable" |
| 3.4.4 | "CAS is unavailable" |
| 3.4.5 | "CAS is unavailable" |
| 3.4.6 | tomcat exception |
| 3.4.7 | tomcat exception |
| 3.4.8 | tomcat exception |
| 3.4.9 | tomcat exception |
| 3.4.10 | tomcat exception |
| 3.4.11 | tomcat exception |
| 3.4.12 | tomcat exception |
| 3.4.12.1 | tomcat exception |
| 3.5.3 | tomcat exception |
| 4.0.1 |
|
| 4.1.0-SNAPSHOT | compile errors (not compatible even with cas 4.0.1 compatible source/configuration) |
CAS is Unavailable
There was an error trying to complete your request. Please notify your support desk or try again.
- official upgrade guide: https://wiki.jasig.org/display/CASUM/Upgrading
- check/describe/document the diff jasig cas versions and their java version requirements/constraints