It looks like the custom one is for adding X.509 support. If you're not doing that, I would suggest just keeping the default. That's also the flow for CAS, pre 3.4.x (since it uses Web Flow 1)
On Thu, Sep 2, 2010 at 8:42 AM, Andrus Suitsu <[email protected]> wrote: > > Hi, > > Yes, I have experience with CAS and Alfresco. > > First I suggest you get CAS working as described here - > > https://wiki.jasig.org/display/CASUM/Best+Practice+Setting+Up+CAS+Locally+using+the+Maven2+WAR+Overlay+Method > > Only after you have resolved all issues there, proceed to Alfresco. My > Alfresco is setup using the package which also contains Tomcat. I have > installed all that in /opt/alfresco on my Ubuntu server. I use Alfresco for > authentication and LDAP for account synchronization. I don't know how your > Alfresco is setup, so I will start with only the changes to my original > configuration. > > 1. In /opt/alfresco/tomcat/shared/classes/alfresco-global.properties I have > the following line > authentication.chain=external1:external,passthru1assthru,ldap1:ldap > > external is for CAS to work. (passthru is needed for CIFS file sharing and > ldap for account syncing). > > 2. Apache's mod_auth_cas module worked but unreliably, so I modified > Alfresco's web.xml file > /opt/alfresco/tomcat/webapps/alfresco/WEB-INF/web.xml and added the > following lines before existing <filter> tags > > <context-param> > <param-name>serverName</param-name> > <param-value>https://alfresco.mydomain</param-value> > </context-param> > <filter> > <filter-name>CAS Authentication Filter</filter-name> > > > <filter-class>org.jasig.cas.client.authentication.AuthenticationFilter</filter-class> > <init-param> > <param-name>casServerLoginUrl</param-name> > <param-value>https://cas.mydomain/cas/login</param-value> > </init-param> > </filter> > <filter> > <filter-name>CAS Validation Filter</filter-name> > > > <filter-class>org.jasig.cas.client.validation.Saml11TicketValidationFilter</filter-class> > <init-param> > <param-name>casServerUrlPrefix</param-name> > <param-value>https://cas.mydomain/cas</param-value> > </init-param> > <init-param> > <param-name>redirectAfterValidation</param-name> > <param-value>true</param-value> > </init-param> > </filter> > <filter> > <filter-name>CAS HttpServletRequest Wrapper Filter</filter-name> > > > <filter-class>org.jasig.cas.client.util.HttpServletRequestWrapperFilter</filter-class> > </filter> > > <filter-mapping> > <filter-name>CAS Authentication Filter</filter-name> > <url-pattern>/*</url-pattern> > </filter-mapping> > <filter-mapping> > <filter-name>CAS Validation Filter</filter-name> > <url-pattern>/*</url-pattern> > </filter-mapping> > <filter-mapping> > <filter-name>CAS HttpServletRequest Wrapper Filter</filter-name> > <url-pattern>/*</url-pattern> > </filter-mapping> > > 3. I copied some JAR file into > /opt/alfresco/tomcat/webapps/alfresco/WEB-INF/lib > - cas-client-core-3.1.11.jar > - opensaml-1.1b.jar > - xmlsec-1.4.3.jar > - commons-logging-1.0.4.jar > > 4. I deleted opensaml-1.0.1.jar from the same directory. > > That's all! Restart Alfresco and you're done. > > > Best regards, > > Andrus Suitsu > > -- > View this message in context: > http://jasig.275507.n4.nabble.com/Trying-to-integrate-CAS-with-Alfresco-tp2400685p2517235.html > Sent from the CAS Users mailing list archive at Nabble.com. > > -- > You are currently subscribed to [email protected] as: > [email protected] > To unsubscribe, change settings or access archives, see > http://www.ja-sig.org/wiki/display/JSG/cas-user > -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user
