Anmol,
There are lot's of resources out there..
I found the following to be very useful in understanding the overall
process/components.
https://docs.spring.io/spring-security/site/docs/3.1.x/reference/cas.html
and
https://github.com/apereo/java-cas-client
and good starting point for
Cemal,
protected void configure(HttpSecurity http) throws Exception {
http
.authorizeRequests()
.regexMatchers("/desktop/.*","/desktop?.*","/login.*")
.authenticated()
.and()
.authorizeRequests()
.regexMatchers("/")
.permitAll()
I have a service definition as follows:
...
"requiredHandlers": [
"java.util.HashSet",
[
"FooAuthHandler",
"BarAuthHandler"
]
],
...
There is a policy for /login flows where we can enable:
cas.authn.policy.any.tryAll=false
Hi,
We are working on end user security hardening. How can I add security
controls for newly access IP addresses or browsers? Or something else
inthis case, captcha or 2FA?
thanks.
--
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines:
