I am using CAS for authentication and a group file for authorization, but this simple configuration is failing. My .htaccess file looks like this:
AuthType CAS AuthName CAS AuthGroupFile /home/www/secure/groups require group faculty mod_auth_cas was installed to Apache 2.2.15 on RHEL 6 from a cloned git repo just a few days ago. So the module is recent. The Apache error log says I'm failing in authorization: Fri Sep 20 07:54:45 2013] [debug] mod_auth_cas.c(2230): [client ] Entering cas_authorize. [Fri Sep 20 07:54:45 2013] [debug] mod_auth_cas.c(2316): [client] No cas-attribute statements found. Not performing authZ. [Fri Sep 20 07:54:45 2013] [error] [client] Authorization of *user burleigh\n* to access / failed, reason: user doesn't appear in group file (/home/www/secure/groups). My user name is most certainly in the groups file, but I notice that the log says "*burleigh\n*". Could the user name be mangled somewhere between our campus CAS server (using protocol 1), mod_auth_cas, and mod_authz_groupfile? PS: I actually want to use LDAP with our ADS for authorization, but thought for this project I'd start with a group file for authorization, since it seems so much simpler. -- Frank Burleigh [email protected] -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user
