I am using zimbra which uses openLDAP for multi-tenant. Current I have to configure each tenants in CAS in order to enable CAS SSO for them .
Below is a sample CAS configuration for two tenants: tenant1.com and tenant2.com. ---CAS deployerConfigContext.xml <bean id="contextSource" class="org.springframework.ldap.core.support.LdapContextSource"> <property name="url" value="ldap://ldap.domain.com"; /> <property name="userDn" value="uid=zimbra,cn=admins,cn=zimbra"/> <property name="password" value="password"/> ... </bean> <bean class="org.jasig.cas.adaptors.ldap.BindLdapAuthenticationHandler" p:filter="mail=%u" p:searchBase="ou=people,dc=tenant1,dc=com" p:contextSource-ref="contextSource" /> <bean class="org.jasig.cas.adaptors.ldap.BindLdapAuthenticationHandler" p:filter="mail=%u" p:searchBase="ou=people,dc=tenant2,dc=com" p:contextSource-ref="contextSource" /> ------------ My pain point is: When a new tenant "tenant3.com" is coming, I have to add the new tenant into CAS configure file as below, and reboot Tomcat/CAS to reload the CAS configure file. If I have 1000 tenants, do I have to add 1000 entries into CAS configure file? ------- <bean class="org.jasig.cas.adaptors.ldap.BindLdapAuthenticationHandler" p:filter="mail=%u" p:searchBase="ou=people,dc=tenant3,dc=com" p:contextSource-ref="contextSource" /> ------- -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user
