Differences

This shows you the differences between two versions of the page.

--- сервис_cas [2014/07/18 08:24]
val
+++ сервис_cas [2019/02/11 12:06] (current)
val
@@ Line 4: / Line 4: @@
   * [[http://www.howtoforge.com/configuring-cas-3.5.2-on-ubuntu-12.04-for-two-factor-authentication-from-wikid]]
   * [[https://wiki.jasig.org/display/CASUM/RADIUS]]
+  * [[http://mvnrepository.com/artifact/org.jasig.cas/cas-server-support-radius/4.1.0]]
+  * [[https://sonnguyen.ws/install-jasig-cas-ubuntu-14-04/https://sonnguyen.ws/install-jasig-cas-ubuntu-14-04/]]
+  * [[http://habrahabr.ru/company/tcsbank/blog/142407/|Единая авторизация (SSO) средствами JASIG CAS. Часть 1]]
+  * [[http://jasig.github.io/cas/4.1.x/protocol/OpenID-Protocol.html]]
 ===== Сервер CAS =====
@@ Line 33: / Line 37: @@
 ==== Привязка серификата к Tomcat ====
+  * !!! Пароли на PKCS12 и на keystore должны совпадать !!!
 <code>
@@ Line 47: / Line 53: @@
 <code>
-casclient# openssl s_client -showcerts -connect proxy.bmstu.ru:443
+casclient# openssl s_client -showcerts -CAfile /etc/ssl/certs/ca-certificates.crt -connect proxy.bmstu.ru:8443
 casserver# cat /etc/tomcat7/server.xml
@@ Line 56: / Line 62: @@
                 ciphers="SSL_RSA_WITH_RC4_128_SHA"
 ...
-</code><code>
+</code>
+===== Клиент CAS =====
+==== Ubuntu 16.04 ====
+<code>
+http://casval.bmstu.ru/test.cgi
+# apt install libapache2-mod-auth-cas
+# cat /etc/apache2/mods-available/auth_cas.conf
+CASCookiePath /var/cache/apache2/mod_auth_cas/
+CASLoginURL https://proxy.bmstu.ru:8443/cas/login
+CASValidateURL https://proxy.bmstu.ru:8443/cas/serviceValidate
+# a2enmod auth_cas
+# cat /etc/apache2/sites-available/casval.conf
+<VirtualHost *:80>
+     ServerName casval.bmstu.ru
+     DocumentRoot /home/val/casval/
+     <Directory /home/val/casval/>
+         Options ExecCGI Indexes FollowSymLinks
+         AddHandler cgi-script .cgi
+         Authtype CAS
+         Require valid-user
+     </Directory>
+</VirtualHost>
+# a2ensite casval
+root@val:~# cat /home/val/casval/test.cgi
+#!/bin/sh
+echo Content-type: text/plain
+echo
+env
+</code>
-===== Клиент CAS (Ubuntu 12.04) =====
+==== Ubuntu 12.04 ====
 <code>
 casclient# apt-get install libapache2-mod-auth-cas
+casclient# a2enmod auth_cas
 casclient# cp int.geotrust.crt /etc/ssl/certs/
@@ Line 76: / Line 127: @@
 </code>
-===== Клиент CAS (FreeBSD 9.3) =====
+==== FreeBSD 10.1 ====
 <code>
-casclient# pkg_add -r ap22-mod_auth_cas
+casclient# pkg install ap24-mod_auth_cas
-casclient# cat /usr/local/etc/apache22/Includes/auth_cas.conf
+casclient# cat /usr/local/etc/apache24/Includes/auth_cas.conf
 </code><code>
-LoadModule auth_cas_module    libexec/apache22/mod_auth_cas.so
+LoadModule auth_cas_module    libexec/apache24/mod_auth_cas.so
-CASCookiePath   /var/cache/apache2/mod_auth_cas/
+CASCookiePath   /tmp/
 CASLoginURL https://proxy.bmstu.ru:8443/cas/login
 CASValidateURL https://proxy.bmstu.ru:8443/cas/serviceValidate
@@ Line 91: / Line 142: @@
 </code>
-===== Настройка Аутенитификации =====
+==== Настройка аутентификации ====
 <code>
+# cat default
 # cat default-ssl
 </code><code>
@@ Line 103: / Line 156: @@
                 AuthType CAS
                 AuthName "TEST CAS AUTH"
-                require valid-user
+                Require valid-user
         </Directory>
 ...
 </code>

Методические материалы Лохтурова Вячеслава

User Tools

Site Tools

Differences

Page Tools