[cas-user] Extend AbstractUsernamePasswordAuthenticationHandler for customized authentication impl.?

2016-08-11 Thread Yan Zhou
Hello, I am running CAS Overlay 4.1.9. Instead of configuring CAS Authentication modules (JDBC/LDAP), I extend AbstractUsernamePasswordAuthenticationHandler, wrote my class and implemented authentication by looking up both database and LDAP for my business needs. I have attached some code

Re: [cas-user] New to CAS, new to Apereo

2016-08-11 Thread Ray Bon
Hank, We have 3 CAS (v 3.5.2.1) virtual machine servers in a primary, secondary, tertiary setup with LDAP (all on Redhat). CAS is very capable and can handle several logins per second. Ray On 2016-08-11 14:23, Hank Foss wrote: > Thanks, Misagh, much appreciated. > > It sounds like this will

Re: [cas-user] New to CAS, new to Apereo

2016-08-11 Thread Hank Foss
Thanks, Misagh, much appreciated. It sounds like this will work quite well for us. Most of our web apps rely on LDAP authentication. Regarding architecture, hope you don't mind a couple of other questions: 1. How many servers are in your CAS environment (presuming you recommend an

Re: [cas-user] New to CAS, new to Apereo

2016-08-11 Thread Christopher Myers
This is the super-down-and-dirty writeup I did internally when I did a fresh 4.x install to upgrade us from 3.5 (we use Novell eDirectory, but it should be very similar for any non-AD LDAP) : Comment by

Re: [cas-user] New to CAS, new to Apereo

2016-08-11 Thread Misagh Moayyed
If you mean CAS is going to provide you with an LDAP server, the answer is no. AFAIK, that has never been the case. If you mean you wish to authenticate via AD/LDAP and get access to your portal and other CAS-protected apps, then it’s quite simple. Since the dawn of time, CAS has supported

[cas-user] New to CAS, new to Apereo

2016-08-11 Thread Hank Foss
Hello, I'm brand new to CAS and Apereo, and am asking the best way to begin. We are migrating our CAS from the cloud to on-premise as a cost savings measure. This will likely save us $60+k annually, as the vendor is also provides our portal. The externally hosted portal contains LDAP as well

Re: [cas-user] CAS 5.0.0 SPNEGO issue

2016-08-11 Thread Misagh Moayyed
Possibly. Could you issue a pull with the updates you have in mind to the docs?  --  Misagh From: Philippe MARASSE Reply: Philippe MARASSE Date: August 11, 2016 at 8:45:31 AM To: cas-user@apereo.org

Re: [cas-user] CAS 5.0.0 SPNEGO issue

2016-08-11 Thread Philippe MARASSE
Today, it works a little better : I get 401, my browser send its ticket... but no authentication : Caused by: KrbException: Invalid argument (400) - Cannot find key of appropriate type to decrypt AP REP - RC4 with HMAC I have to declare my keytab as default keytab in /etc/krb5.conf to get

Re: [cas-user] Forgot password

2016-08-11 Thread Christopher Myers
Personally, I just edit the source pages in /cas-server-webapp/src/main/webapp/WEB-INF/view/jsp/default/ui/ There are a couple of files you can edit, including the casLoginView.jsp, and the files in the "includes" subfolder. and then it gets compiled when you go to build the app. If you