Hi Everybody,
I'm trying to configure Apache so that if a user has a certain cookie,
for that domain, stored in their browser, then CAS authentication is
bypassed. I'm trying to do an Apache config with mod_auth_cas, that
uses an If statement and looks like this:
<Directory "/var/www/website/web">
<If "!%{HTTP_COOKIE} =~ /cookiename/">
Options +ExecCGI +Includes
AuthType CAS
CASScope /
require valid-user
</If>
</Directory>
CASLoginURL https://casserver/cas/login
CASValidateURL https://casserver/cas/serviceValidate
CASSSOEnabled On
CASDebug On
CASVersion 2
CASCookiePath /var/cache/cas/
CASCookieHttpOnly Off
CASTimeout 28800
CASIdleTimeout 3600
I've verified that the cookie is set, but the If statement isn't
working. I'm always getting redirected to the CAS login server.
Is it possible to use an If Statement like this to make CAS auth
optional? If not, is there another way to bypass CAS auth if a
certain cookie is already present in the user's browser?
Thanks!
Bryan
--
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines: https://goo.gl/1VRrw7
- Contributions: https://goo.gl/mh7qDG
---
You received this message because you are subscribed to the Google Groups "CAS
Community" group.
To unsubscribe from this group and stop receiving emails from it, send an email
to [email protected].
To view this discussion on the web visit
https://groups.google.com/a/apereo.org/d/msgid/cas-user/20201201202245.GI13952%40o3011.70mpg.org.
