Hi Matthew,
Maven2 and CAS-3.3 are all you need.
Here is what I did:
o I used Eclispe but after installing the Maven plug-in, eclipse
treats all my projects as Maven projects and if it could not find
pom.xml in a project, it complains about it. So I removed the plug-in
and use Eclispe as a editor. I know the purpose of the plug-in is to
eliminate the manual process as I will described below and more. But
for now I will not use it until I have more time to figure it out.
Hopefully, someone can have some input on this.
o When you untar the CAS-3.3 you will find the directory
cas-server-webapp, use that directory to create a Java project in
Eclipse.
NOTE: If you have mvn in your PATH, you can go to the
cas-server-webapp and run the command: mvn package
First time you run, Maven will download some files (you need internet
connection)
It should success building and create cas-server-webapp/target/cas.war file.
This should be the same as CAS-3.3/modules/cas-server-webapp-3.3.war
file that include in the download
To modify CAS to support authenticate against LDAP:
All files mention below are relative to the cas-server-webapp directory
o Modify pom.xml file and add:
----------------------------------------------
<dependency>
<groupId>org.jasig.cas</groupId>
<artifactId>cas-server-support-ldap</artifactId>
<version>${project.version}</version>
</dependency>
---------------------------------------------
in between the <dependencies>
o Modify src/main/webapp/WEB-INF/deployerConfigContext.xml and replace:
org.jasig.cas.authentication.handler.support.SimpleTestUsernamePasswordAuthenticationHandler
with
org.jasig.cas.adaptors.ldap.FastBindLdapAuthenticationHandler
and add:
------------------------------------------------
<bean id="contextSource"
class="org.jasig.cas.adaptors.ldap.util.AuthenticatedLdapContextSource">
<property name="pool" value="true" />
<property name="urls">
<list>
<value>ldap://your-ldap-server:389</value>
</list>
</property>
<property name="baseEnvironmentProperties">
<map>
<entry>
<key>
<value>java.naming.security.authentication</value>
</key>
<value>simple</value></entry></map></property>
<property name="userName">
<value>your-cn-of-the-access-or-anonymous</value></property>
<property name="password">
<value>depend-on-anonymous-access</value>
</property>
</bean>
----------------------------------------------------------
in between the <beans>
o Now if you go back the prompt and run: mvn package again, maven will
download the spring ldap jar files for you and include in the newly
build cas.war
Hope that help! (please update if you found any trouble)
Thai Nguyen
On Tue, Oct 7, 2008 at 4:29 AM, Matthew Jones
<[EMAIL PROTECTED]> wrote:
> Up until now all I have been doing is deploying CAS from the downloaded .war
> file and adding the Spring LDAP jars manually. I now want to move to being
> able to build a custom .war file that contains the required LDAP jars and
> then move on to writing a custom authentication handler for our combined
> X509 certificates and username /pasword.
>
> I have installed maven2 and already have the CAS 3.3 download as that's what
> I have deployed to our test system. Is that sufficient for what I want to
> do? Is there any basic guide for novices starting along this line?
>
> I do have eclipse installed although I haven't used it for anything related
> to CAS although I have seen using Eclipse mentioned. Is this the recommended
> approach? I'm after the simplest approach to set this up so I'm happy to
> follow any reasonable approach especially as this isn't in my normal working
> set currently.
>
> All help and advice gratefully received.
>
> Thanks
>
> --
> Matthew Jones
> Interactive Data Managed Solutions Ltd
> -----------------------------------------------------------------------
> Registered in England Company Number 3691868
> Registered Office: Fitzroy House, 13-17 Epworth Street, London, EC2A 4DL
> Tel: +44 (0)1242 694133 | Fax: +44 (0)1242 694109
> [EMAIL PROTECTED]
> http://www.interactivedata-ms.com/694133
>
> This message (including any files transmitted with it) may contain
> confidential and/or proprietary information, is the property of Interactive
> Data Corporation and/or its subsidiaries, and is directed only to the
> addressee(s). If you are not the designated recipient or have reason to
> believe you received this message in error, please delete this message from
> your system and notify the sender immediately. An unintended recipient's
> disclosure, copying, distribution, or use of this message or any attachments
> is prohibited and may be unlawful.
> Interactive Data (Europe) Ltd Registered No. 949387 England Registered
> Office: Fitzroy House 13-17 Epworth Street. London. EC2A 4DL
>
>
> _______________________________________________
> Yale CAS mailing list
> [email protected]
> http://tp.its.yale.edu/mailman/listinfo/cas
>
>
_______________________________________________
Yale CAS mailing list
[email protected]
http://tp.its.yale.edu/mailman/listinfo/cas
