On 16 February 2017 at 22:05, RJ Guroo <ssogu...@gmail.com> wrote:
> I have a requirement to ignore SSO for subsequent folders within a protected
> folder.
>
> For example: We have to protect the URI, /app1/
>
> /app1/ should be protected
> /app1/dir1/ .. protected by the first rule
> /app1/dir2/ .. protected by the first rule
> /app1/dir2/ .. protected by the first rule
> /app1/dir3/ should be excluded or ignored by SSO.
> /app1/dir4/ .. protected by the first rule
> /app1/dir5/ .. protected by the first rule
> /app1/dir6/ .. protected by the first rule
>
> We cant protect individual directories, as the real list is so big.
>
> In Siteminder langauge, we used to root protect /app1/ and have the
> following in LocalConfig of the Web Agent
>
> IgnoreUrl="/app1/dir3/"
>
> This is a frequent requirement for us. How to go about this with CAS?
Look into the CASGateway mod_auth_cas directive.
Something like:
<Location /app1>
AuthType CAS
CASGateway /app1/dir3
<RequireAll>
Require valid-user
</RequireAll>
</Location>
<Location /app1/dir3>
Require all granted
</Location>
--
- CAS gitter chatroom: https://gitter.im/apereo/cas
- CAS mailing list guidelines: https://apereo.github.io/cas/Mailing-Lists.html
- CAS documentation website: https://apereo.github.io/cas
- CAS project website: https://github.com/apereo/cas
---
You received this message because you are subscribed to the Google Groups "CAS
Community" group.
To unsubscribe from this group and stop receiving emails from it, send an email
to cas-user+unsubscr...@apereo.org.
To view this discussion on the web visit
https://groups.google.com/a/apereo.org/d/msgid/cas-user/CAAgu-wASsr_v13To0tWUv-9SHmugD2gnX2cHRi40Q9vBbWYHVw%40mail.gmail.com.
