CAS 4.0 is not released, no. There is, however, a *fantastic* free and open source software plugin for CAS, implemented in Java, and compatibly licensed, implementing excruciatingly rigorous, correct, excellent, careful, thoughtful SAML support, both SAML1 and SAML2, supporting common profiles, IdP-initiated and SP-initiated, with flexible configuration options, support for federations, etc. It's really quite good.
It's called the Shibboleth IdP. http://shibboleth.net/products/identity-provider.html And then you bridge to the Shibboleth IdP using this lovely integration library, so that users experience CAS as the UI for login even when integrating using SAML, and so that the SAML IdP and the traditional CAS protocol share a single sign-on session, and so that forceAuthentication can be honored correctly, etc. https://github.com/Unicon/shib-cas-authenticator You may find that CAS 3.5.2, with the Shibboleth IdP, with the CAS integration plugin for the Shibboleth IdP, implements all the SAML support you need. :) Think of it as CAS 4 today, to the extent that you're looking for SAML capabilities in a next CAS release. Or, if you like, as Shibboleth IdPv3 today, since one new feature intended in Shibboleth IdP v3 is flexible login workflow implemented with Spring Web Flow, which CAS offers today. In all seriousness, Unicon has been successful in helping numerous adopters happily implement this combination of CAS and Shibboleth IdP to realize CAS login experience and lightweight protocol excellence, SAML rigor excellence, all working well together in a shared single sign-on session with a unified end-user-facing experience. The future is now. Hope this helps, Andrew On Tue, Feb 26, 2013 at 10:07 AM, Stein, Eric <[email protected]> wrote: > According to this page, https://wiki.jasig.org/display/CAS/CAS+Roadmap, > CAS 4.0 was targeted for release in Jan 2013. I can't find any > indication that it has been released yet. Can you please confirm that it > has not? I know it's not on the download page, but my boss keeps telling > me it's out and we should be using it. > > He wants 4.0 for SAML 2.0 support. I've read* that CAS 3.5.1 has limited > support for SAML 2.0. Is that true? If we can only viably support SAML > 1.1 for now, that might be okay. > > As far as implementing SAML 1.1 with CAS 3.5.1, these are the > documentation links I found .. did I miss anything? > https://wiki.jasig.org/display/CASUM/SAML+Support+in+CAS+4 > > https://wiki.jasig.org/display/CASUM/SAML+1.1 > https://wiki.jasig.org/display/CASC/Saml11TicketValidationFilter+Example > > https://sp.princeton.edu/oit/sdp/CAS/Wiki%20Pages/CAS%20samlValidate%20w > alkthrough.aspx > > > Thanks, > Eric Stein > > > > * > http://technotes.khitrenovich.com/cas-3-5-1-saml-2-0-identity-provider/, > and others. > > -- > You are currently subscribed to [email protected] as: > [email protected] > To unsubscribe, change settings or access archives, see > http://www.ja-sig.org/wiki/display/JSG/cas-user > > -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user
