...
https://github.com/apereo/java-cas-client
The context definition in server.xml for Tomcat looks like this:
Code Block |
---|
<Context docBase="/ucd/opt/grouper-ui/dist/grouper" path="/grouper" reloadable="false" mapperContextRootRedirectEnabled="true" mapperDirectoryRedirectEnabled="true"> <Realm className="org.jasig.cas.client.tomcat.v7.PropertiesCasRealm" propertiesFilePath="/etc/tomcat/grouper-users.properties" /> <!-- If you do not need to map users to roles via a grouper-users.properties file use this. <Realm className="org.jasig.cas.client.tomcat.v7.AssertionCasRealm" /> --> <Valve className="org.jasig.cas.client.tomcat.v7.Cas20CasAuthenticator" encoding="UTF-8" casServerLoginUrl="https://CAS_SERVER/cas/login" casServerUrlPrefix="https://CAS_SERVER/cas/" serverName="GROUPER_SERVER" /> <!-- Single sign-out support --> <Valve className="org.jasig.cas.client.tomcat.v7.SingleSignOutValve" artifactParameterName="SAMLart" /> </Context> |
- You dont need to alter anything in the Grouper UI itself, just need to make sure that the logged in user is searchable by a source.
- For Tomcat 8.0.x, change the package names to "v8" instead. (Note: Tomcat 8.5.x at this point is not supported and requires mod to the CAS client given API incompatibilities between 8.0.x and 8.5.x)
Previous way to integrate CAS with Grouper
...