In seraph-config.xml, the only difference from the Apereo documentation was
using Jira44CasAuthenticator instead of JiraCasAuthenticator.
In web.xml, i used config that worked with the Soulwing CAS client in
earlier JIRA versions. We have to add a single sign-out filter, an
authentication filter, and a ticket validation filter. The filters are
added just before the JiraLastFilter:
<!-- CAS Configuration -->
<filter>
<filter-name>CasSingleSignOutFilter</filter-name>
<filter-class>org.jasig.cas.client.session.SingleSignOutFilter
</filter-class>
</filter>
<filter>
<filter-name>CasAuthenticationFilter</filter-name>
<filter-class>
org.jasig.cas.client.authentication.AuthenticationFilter</filter-class>
<init-param>
<param-name>casServerLoginUrl</param-name>
<param-value>https://auth.alterscrap.com/cas/login</param-value>
</init-param>
<init-param>
<param-name>serverName</param-name>
<param-value>https://jira-test.alterscrap.com/</param-value>
</init-param>
</filter>
<filter>
<filter-name>CasValidationFilter</filter-name>
<filter-class>
org.jasig.cas.client.validation.Cas20ProxyReceivingTicketValidationFilter
</filter-class>
<init-param>
<param-name>casServerUrlPrefix</param-name>
<param-value>https://auth.alterscrap.com/cas</param-value>
</init-param>
<init-param>
<param-name>serverName</param-name>
<param-value>https://jira-test.alterscrap.com/</param-value>
</init-param>
<init-param>
<param-name>redirectAfterValidation</param-name>
<param-value>true</param-value>
</init-param>
</filter>
<!-- end CAS Configuration -->
We then have to apply the filters via filter-mappings. These are inserted
just before the login filter-mapping:
<!-- CAS Configuration -->
<filter-mapping>
<filter-name>CasSingleSignOutFilter</filter-name>
<url-pattern>/*</url-pattern>
</filter-mapping>
<filter-mapping>
<filter-name>CasAuthenticationFilter</filter-name>
<url-pattern>/*</url-pattern>
</filter-mapping>
<filter-mapping>
<filter-name>CasValidationFilter</filter-name>
<url-pattern>/*</url-pattern>
</filter-mapping>
<!-- end CAS Configuration -->
Lastly, we need the single sign-out listener. This gets added at the end
of the listener list:
<!-- CAS Configuration -->
<listener>
<listener-class>
org.jasig.cas.client.session.SingleSignOutHttpSessionListener
</listener-class>
</listener>
<!-- end CAS Configuration -->
That should be it! As i said, this is VERY preliminary, and we're having
problems with the server callbacks failing (and have no errors in the
logs), but this should get you started. I'll post an update if i figure
out our remaining issues.
--
- CAS gitter chatroom: https://gitter.im/apereo/cas
- CAS mailing list guidelines: https://apereo.github.io/cas/Mailing-Lists.html
- CAS documentation website: https://apereo.github.io/cas
- CAS project website: https://github.com/apereo/cas
---
You received this message because you are subscribed to the Google Groups "CAS
Community" group.
To unsubscribe from this group and stop receiving emails from it, send an email
to [email protected].
To view this discussion on the web visit
https://groups.google.com/a/apereo.org/d/msgid/cas-user/b8ee2614-154d-4d8f-a5b3-a6935a3ef358%40googlegroups.com.
