This shows you the differences between two versions of the page.
Both sides previous revision Previous revision Next revision | Previous revision | ||
сервис_cas [2015/10/05 15:35] val [Настройка Аутенитификации] |
сервис_cas [2019/02/11 12:06] val |
||
---|---|---|---|
Line 4: | Line 4: | ||
* [[http://www.howtoforge.com/configuring-cas-3.5.2-on-ubuntu-12.04-for-two-factor-authentication-from-wikid]] | * [[http://www.howtoforge.com/configuring-cas-3.5.2-on-ubuntu-12.04-for-two-factor-authentication-from-wikid]] | ||
* [[https://wiki.jasig.org/display/CASUM/RADIUS]] | * [[https://wiki.jasig.org/display/CASUM/RADIUS]] | ||
+ | * [[http://mvnrepository.com/artifact/org.jasig.cas/cas-server-support-radius/4.1.0]] | ||
+ | * [[https://sonnguyen.ws/install-jasig-cas-ubuntu-14-04/https://sonnguyen.ws/install-jasig-cas-ubuntu-14-04/]] | ||
+ | * [[http://habrahabr.ru/company/tcsbank/blog/142407/|Единая авторизация (SSO) средствами JASIG CAS. Часть 1]] | ||
+ | * [[http://jasig.github.io/cas/4.1.x/protocol/OpenID-Protocol.html]] | ||
===== Сервер CAS ===== | ===== Сервер CAS ===== | ||
Line 33: | Line 37: | ||
==== Привязка серификата к Tomcat ==== | ==== Привязка серификата к Tomcat ==== | ||
+ | |||
+ | * !!! Пароли на PKCS12 и на keystore должны совпадать !!! | ||
<code> | <code> | ||
Line 58: | Line 64: | ||
</code> | </code> | ||
- | ===== Клиент CAS (Ubuntu 12.04) ===== | + | ===== Клиент CAS ===== |
+ | |||
+ | |||
+ | ==== Ubuntu 16.04 ==== | ||
+ | |||
+ | <code> | ||
+ | http://casval.bmstu.ru/test.cgi | ||
+ | |||
+ | # apt install libapache2-mod-auth-cas | ||
+ | |||
+ | |||
+ | # cat /etc/apache2/mods-available/auth_cas.conf | ||
+ | CASCookiePath /var/cache/apache2/mod_auth_cas/ | ||
+ | CASLoginURL https://proxy.bmstu.ru:8443/cas/login | ||
+ | CASValidateURL https://proxy.bmstu.ru:8443/cas/serviceValidate | ||
+ | |||
+ | |||
+ | # a2enmod auth_cas | ||
+ | |||
+ | |||
+ | # cat /etc/apache2/sites-available/casval.conf | ||
+ | <VirtualHost *:80> | ||
+ | ServerName casval.bmstu.ru | ||
+ | DocumentRoot /home/val/casval/ | ||
+ | <Directory /home/val/casval/> | ||
+ | Options ExecCGI Indexes FollowSymLinks | ||
+ | AddHandler cgi-script .cgi | ||
+ | Authtype CAS | ||
+ | Require valid-user | ||
+ | </Directory> | ||
+ | </VirtualHost> | ||
+ | |||
+ | |||
+ | # a2ensite casval | ||
+ | |||
+ | |||
+ | root@val:~# cat /home/val/casval/test.cgi | ||
+ | #!/bin/sh | ||
+ | echo Content-type: text/plain | ||
+ | echo | ||
+ | env | ||
+ | </code> | ||
+ | |||
+ | ==== Ubuntu 12.04 ==== | ||
<code> | <code> | ||
Line 78: | Line 127: | ||
</code> | </code> | ||
- | ===== Клиент CAS (FreeBSD 10.1) ===== | + | ==== FreeBSD 10.1 ==== |
<code> | <code> | ||
Line 93: | Line 142: | ||
</code> | </code> | ||
- | ===== Настройка Аутенитификации ===== | + | ==== Настройка аутентификации ==== |
<code> | <code> |