Re: [cas-user] CAS authentication denial based on an attribute

2017-09-29 Thread David Curry 
If you're not doing so yet, I've found the best way to at least sort of
keep up is to read Misagh's "feature release" blog posts on
https://apereo.github.io/ -- at least that way I get an awareness of all
the new features and (hopefully) they'll stick somewhere in the back of
mind until I get to the point where I'm ready to work on them.

--Dave


--

DAVID A. CURRY, CISSP
*DIRECTOR OF INFORMATION SECURITY*
INFORMATION TECHNOLOGY

71 FIFTH AVE., 9TH FL., NEW YORK, NY 10003
+1 212 229-5300 x4728 • david.cu...@newschool.edu

[image: The New School]

On Fri, Sep 29, 2017 at 8:15 AM, Tom O'Neill <one...@sigcorp.com> wrote:

> Looks like I need to catch up on my 5.x – another good reference, thanks
> Dave!
>
>
>
> Thanks,
>
>
>
> *Tom O’Neill*
>
>
>
>
>
> *From:* cas-user@apereo.org [mailto:cas-user@apereo.org] *On Behalf Of *David
> Curry
> *Sent:* Friday, September 29, 2017 8:13 AM
> *To:* cas-user@apereo.org
> *Subject:* Re: [cas-user] CAS authentication denial based on an attribute
>
>
>
> Most of the functionality for what you want is here, I think:
>
>
>
> https://apereo.github.io/cas/development/installation/
> Webflow-Customization-AUP.html
>
>
>
> It seems to be available in 5.1.x as well, although with fewer options for
> storing state that what 5.2.x is going to offer.
>
>
>
> I should mention that while this is on my list of features to investigate,
> I have not actually tried it yet, so I can't comment on it beyond "here's
> the link."
>
>
>
> --Dave
>
>
>
>
> --
>
> *DAVID A. CURRY, CISSP*
> *DIRECTOR OF INFORMATION SECURITY*
> INFORMATION TECHNOLOGY
>
> 71 FIFTH AVE., 9TH FL., NEW YORK, NY 10003
> <https://maps.google.com/?q=71+FIFTH+AVE.,+9TH+FL.,+NEW+YORK,+NY+10003+%0D+%2B1+212=gmail=g>
> +1 212
> <https://maps.google.com/?q=71+FIFTH+AVE.,+9TH+FL.,+NEW+YORK,+NY+10003+%0D+%2B1+212=gmail=g>
> 229-5300 x4728 • david.cu...@newschool.edu
>
> [image: The New School]
>
>
>
> On Fri, Sep 29, 2017 at 3:49 AM, Sebastien BEAUDLOT <
> sebastien.beaud...@univ-avignon.fr> wrote:
>
> Hi,
>
>
> I was asked by my boss if CAS can help managing a digital version of our
> internal rules agreement (for now, every user sign a paper version of the
> rules before getting a login/password. We want them to read a PDF version
> of the rules, then click a box to agree, before being able to authenticate
> through CAS.
>
>
> Is CAS able to do such thing ? Denying authentication based on a LDAP
> attribute, for example, and redirecting to a page/service until this
> particular attribute is set to 'true' ?
>
> So we would just have to create the page to digitally sign the rules.
>
>
> Regards.
>
>
>
> --
> Sébastien BEAUDLOT
>
> Administrateur réseaux, téléphonie et flotte mobile
>
> Direction Opérationnelle des Systèmes d'Information ( DOSI )
> Pôle Infrastructures
> Université d'Avignon et des Pays de Vaucluse
>
> Tèl : 04.90.16.26.04
> --
>
> --
> - Website: https://apereo.github.io/cas
> - Gitter Chatroom: https://gitter.im/apereo/cas
> - List Guidelines: https://goo.gl/1VRrw7
> - Contributions: https://goo.gl/mh7qDG
> ---
> You received this message because you are subscribed to the Google Groups
> "CAS Community" group.
> To unsubscribe from this group and stop receiving emails from it, send an
> email to cas-user+unsubscr...@apereo.org.
> To view this discussion on the web visit https://groups.google.com/a/
> apereo.org/d/msgid/cas-user/693435497.7465236.
> 1506671346591.JavaMail.zimbra%40univ-avignon.fr
> <https://groups.google.com/a/apereo.org/d/msgid/cas-user/693435497.7465236.1506671346591.JavaMail.zimbra%40univ-avignon.fr?utm_medium=email_source=footer>
> .
>
>
>
> --
> - Website: https://apereo.github.io/cas
> - Gitter Chatroom: https://gitter.im/apereo/cas
> - List Guidelines: https://goo.gl/1VRrw7
> - Contributions: https://goo.gl/mh7qDG
> ---
> You received this message because you are subscribed to the Google Groups
> "CAS Community" group.
> To unsubscribe from this group and stop receiving emails from it, send an
> email to cas-user+unsubscr...@apereo.org.
> To view this discussion on the web visit https://groups.google.com/a/
> apereo.org/d/msgid/cas-user/CA%2Bd9XAMkAjN0Sobr4W9Bqj-
> LiduDY-wqx7yABfkc8X3Xgg1_tw%40mail.gmail.com
> <https://groups.google.com/a/apereo.org/d/msgid/cas-user/CA%2Bd9XAMkAjN0Sobr4W9Bqj-LiduDY-wqx7yABfkc8X3Xgg1_tw%40mail.gmail.com?utm_medium=email_source=footer>
> .
>
> --
> - Website: https://apereo.github.io/cas
> - Gitter Chatroom: https://gitter.im/apereo/cas
> - List Guidelines: https://goo.gl

Re: [cas-user] CAS authentication denial based on an attribute

2017-09-29 Thread David Curry 
Most of the functionality for what you want is here, I think:

https://apereo.github.io/cas/development/installation/Webflow-Customization-AUP.html

It seems to be available in 5.1.x as well, although with fewer options for
storing state that what 5.2.x is going to offer.

I should mention that while this is on my list of features to investigate,
I have not actually tried it yet, so I can't comment on it beyond "here's
the link."

--Dave


--

DAVID A. CURRY, CISSP
*DIRECTOR OF INFORMATION SECURITY*
INFORMATION TECHNOLOGY

71 FIFTH AVE., 9TH FL., NEW YORK, NY 10003
+1 212 229-5300 x4728 • david.cu...@newschool.edu

[image: The New School]

On Fri, Sep 29, 2017 at 3:49 AM, Sebastien BEAUDLOT <
sebastien.beaud...@univ-avignon.fr> wrote:

> Hi,
>
> I was asked by my boss if CAS can help managing a digital version of our
> internal rules agreement (for now, every user sign a paper version of the
> rules before getting a login/password. We want them to read a PDF version
> of the rules, then click a box to agree, before being able to authenticate
> through CAS.
>
> Is CAS able to do such thing ? Denying authentication based on a LDAP
> attribute, for example, and redirecting to a page/service until this
> particular attribute is set to 'true' ?
> So we would just have to create the page to digitally sign the rules.
>
> Regards.
>
> --
> Sébastien BEAUDLOT
>
> Administrateur réseaux, téléphonie et flotte mobile
>
> Direction Opérationnelle des Systèmes d'Information ( DOSI )
> Pôle Infrastructures
> Université d'Avignon et des Pays de Vaucluse
>
> Tèl : 04.90.16.26.04
> --
>
> --
> - Website: https://apereo.github.io/cas
> - Gitter Chatroom: https://gitter.im/apereo/cas
> - List Guidelines: https://goo.gl/1VRrw7
> - Contributions: https://goo.gl/mh7qDG
> ---
> You received this message because you are subscribed to the Google Groups
> "CAS Community" group.
> To unsubscribe from this group and stop receiving emails from it, send an
> email to cas-user+unsubscr...@apereo.org.
> To view this discussion on the web visit https://groups.google.com/a/
> apereo.org/d/msgid/cas-user/693435497.7465236.
> 1506671346591.JavaMail.zimbra%40univ-avignon.fr
> 
> .
>

-- 
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines: https://goo.gl/1VRrw7
- Contributions: https://goo.gl/mh7qDG
--- 
You received this message because you are subscribed to the Google Groups "CAS 
Community" group.
To unsubscribe from this group and stop receiving emails from it, send an email 
to cas-user+unsubscr...@apereo.org.
To view this discussion on the web visit 
https://groups.google.com/a/apereo.org/d/msgid/cas-user/CA%2Bd9XAMkAjN0Sobr4W9Bqj-LiduDY-wqx7yABfkc8X3Xgg1_tw%40mail.gmail.com.