Scribd
Upload
21 views4 pages

Etc/cas/config/cas Properties

Uploaded by

Baghdadi absari
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
21 views4 pages

Etc/cas/config/cas Properties

Uploaded by

Baghdadi absari
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
You are on page 1/ 4

CAS SERVER

etc/cas/config/cas.properties
------------------------------------------------------
cas.server.name: https://localhost:8443
cas.server.prefix: https://localhost:8443/cas

cas.adminPagesSecurity.ip=127\.0\.0\.1

cas.serviceRegistry.initFromJson=true
cas.serviceRegistry.json.location: file:/etc/cas/services/

logging.config: file:/etc/cas/config/log4j2.xml

cas.tgc.secure:true
cas.tgc.crypto.signing.key: xxxxxxxxxxx
cas.tgc.crypto.encryption.key: xxxxxxxxxx

cas.webflow.crypto.signing.key: xxxxxxxxx
cas.webflow.crypto.encryption.key: xxxxxxxxxx
----------------------------------------

etc/cas/services/HTTPSandIMAPSwildcard-20191123015310.json
-----------------------------------------------------------
{
/*
* Wildcard service definition that applies to any https or imaps url.
* Do not use this definition in a production environment.
*/
"@class" : "org.apereo.cas.services.RegexRegisteredService",
"serviceId" : "^https://.*",
"name" : "HTTPS and IMAPS wildcard",
"allowed" : true,
"ssoEnabled" : true,
"anonymousAccess" : false,
"id" : 20191123015310,
"evaluationOrder" : 99999
}

mod_auth_cas Client

apache site virtualhost configuration


---------------------------
<IfModule mod_ssl.c>
<VirtualHost _default_:443>
ServerAdmin webmaster@localhost
ServerName 10.70.30.1
DocumentRoot /var/www/html

ErrorLog ${APACHE_LOG_DIR}/error.log
CustomLog ${APACHE_LOG_DIR}/access.log combined
SSLEngine on
SSLCertificateFile /etc/apache2/ssl.crt/ssl/keystore.crt
SSLCertificateKeyFile /etc/apache2/ssl.crt/ssl/keystore.key

# Server Certificate Chain:


SSLCertificateChainFile /etc/apache2/ssl.crt/ssl/casdev-all.crt

#SSLOptions +FakeBasicAuth +ExportCertData +StrictRequire


<FilesMatch "\.(cgi|shtml|phtml|php)$">
SSLOptions +StdEnvVars
</FilesMatch>
<Directory /usr/lib/cgi-bin>
SSLOptions +StdEnvVars
</Directory>

<Directory "/var/www/html/secured-by-cas">
<IfModule mod_auth_cas.c>
AuthType CAS
CASAuthNHeader On
</IfModule>
Require valid-user

</Directory>

<Directory "/var/www/html/return-mapped">
<IfModule mod_auth_cas.c>
AuthType CAS
CASAuthNHeader On
</IfModule>

Require valid-user
</Directory>

</VirtualHost>

</IfModule>
----------------------------

/etc/apache2/mods-available/auth_cas.conf
-------------------------------------------
<IfModule !mod_auth_cas.c>
LoadModule auth_cas_module /usr/lib/apache2/modules/mod_auth_cas.so
</IfModule>
CASLoginUrl https://10.70.30.1:8443/cas/login
CASValidateUrl https://10.70.30.1:8443/cas/serviceValidate
CASCookiePath /var/cache/apache2/mod_auth_cas/
CASRootProxiedAs https://10.70.30.126
CASValidateSAML Off
CASSSOEnabled On
CASDebug On
CASCertificatePath /etc/apache2/ssl.crt/keystore.jks
CASVersion 2
LogLevel debug
----------------------------------------------------------

Output:

You might also like