Thank you! I am looking forward to it. Cheers, 11011011
On 2014-04-06, 21:35 , J?r?me LELEU wrote: > Hi, > > MFA / LOA means you could fill in multiple credentials and > authenticate with them. > > In CAS server 4.0, the authentication system has been refactored to be > able to process multiple credentials. So MFA is internally supported. > > Though, the UI is not able to accept multiple credentials and you > can't define any policy to say what authentication handlers / > credentials are required for what services. That will be LOA. It > starts in 4.1, following the steps defined in > https://wiki.jasig.org/display/CAS/Level+Of+Assurance+-+Head+document. > > Best regards, > J?r?me > > > > 2014-04-04 23:07 GMT+02:00 J. David Beutel <jbeu...@hawaii.edu > <mailto:jbeu...@hawaii.edu>>: > > Does 4.0 have some kind of support for MFA or LOA? I could not > find anything about them in the current docs[1] or release notes[2]. > > I gather from the roadmap[3] that the reason for the major release > is the improved authN APIs to support multiple credentials, but is > that MFA? I also see the LOA roadmap[4] and spec[5], but I could > not find much about it on this list after Nathan Kopp changed jobs > in 2012. > > I am interested in using Google Authenticator[6] and other second > factors. > > Cheers, > 11011011 > > [1] http://jasig.github.io/cas/current/index.html > [2] > > https://issues.jasig.org/secure/ReleaseNote.jspa?version=12287&styleName=Html&projectId=10007&Create=Create&atl_token=A5B7-E3WS-Z8KM-GQ6E|2805c3303369fb800a8f52d93aeeeec73ff7c88e|lout > [3] https://wiki.jasig.org/display/CAS/CAS+Roadmap > [4] > https://wiki.jasig.org/display/CAS/Level+Of+Assurance+-+Head+document > [5] > https://wiki.jasig.org/display/CAS/Second+Level+Of+Assurance+Specification > [6] http://en.wikipedia.org/wiki/Google_Authenticator > > > On 2014-04-04, 05:11 , Misagh Moayyed wrote: >> >> CAS Community, >> >> CAS 4.0.0 release candidate #4 is available for evaluation. >> Artifacts should shortly become available in Maven Central [1]. >> We encourage adopters to grab this release, integrate into your >> environment, and provide feedback. >> >> Notable improvements in this release are: >> >> [CAS-1380] - Module "cas-server-webapp-support" pulls in stale >> Spring dependencies that crash CAS >> >> [CAS-1410] - Failure to create pgtIOU/PGT should not result in >> successful validation >> >> [CAS-1412] - TerminateWebSessionListener terminates web session >> at end of subflow >> >> [CAS-1411] - Protocol updates on security strength of validation >> requests >> >> [CAS-1284] - Validate and adopt CAS3 protocol rev >> >> [CAS-1390] - Update ldaptive version to 1.0.3 >> >> [CAS-1417] - Complete Github Pages documentation >> >> [CAS-1418] - Generalize Password Expiration Support >> >> [CAS-1428] - Update language properties for 4.0 >> >> Regards, >> >> Misagh >> >> [1] http://bit.ly/1fRWoW5 >> >> -- >> You are currently subscribed tocas-...@lists.jasig.org >> <mailto:cas-dev@lists.jasig.org> as:jbeu...@hawaii.edu >> <mailto:jbeu...@hawaii.edu> >> To unsubscribe, change settings or access archives, >> seehttp://www.ja-sig.org/wiki/display/JSG/cas-dev > > -- > You are currently subscribed tocas-...@lists.jasig.org > <mailto:cas-dev@lists.jasig.org> as:lel...@gmail.com > <mailto:lel...@gmail.com> > To unsubscribe, change settings or access archives, > seehttp://www.ja-sig.org/wiki/display/JSG/cas-dev > > > -- > You are currently subscribed tocas-...@lists.jasig.org > <mailto:cas-dev@lists.jasig.org> as: jbeu...@hawaii.edu > To unsubscribe, change settings or access archives, see > http://www.ja-sig.org/wiki/display/JSG/cas-dev -- You are currently subscribed to cas-dev@lists.jasig.org as: arch...@mail-archive.com To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-dev
