CentOS 7.x Apereo CAS example client setup

From Notes_Wiki
Revision as of 13:38, 15 March 2020 by Saurabh (talk | contribs) (Created page with "<yambe:breadcrumb self="Apereo CAS example client setup">CentOS 7.x Apereo CAS|Apereo CAS</yambe:breadcrumb> =CentOS 7.x Apereo CAS example client setup= # yum -y install epe...")
(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)

<yambe:breadcrumb self="Apereo CAS example client setup">CentOS 7.x Apereo CAS|Apereo CAS</yambe:breadcrumb>

CentOS 7.x Apereo CAS example client setup

  1. yum -y install epel-release
  2. yum -y install php php-pear-CAS mod_ssl httpd
  3. systemctl restart httpd
  4. Keep CA certificate at /etc/pki/tls/certs/cacert.pem location
  5. Make sure everyone (Desktop with web browser, CAS client server, CAS server) is able to resolve each other by DNS names
  6. Try example code from https://apereo.atlassian.net/wiki/spaces/CASC/pages/103252665/phpCAS+examples ( https://github.com/apereo/phpCAS/tree/master/docs/examples ) such as one given below and test
<?php

/**
 *   Example for a simple cas 2.0 client
 *
 * PHP Version 5
 *
 * @file     example_simple.php
 * @category Authentication
 * @package  PhpCAS
 * @author   Joachim Fritschi <jfritschi@freenet.de>
 * @author   Adam Franco <afranco@middlebury.edu>
 * @license  http://www.apache.org/licenses/LICENSE-2.0  Apache License 2.0
 * @link     https://wiki.jasig.org/display/CASC/phpCAS
 */

// Load the settings from the central config file
//require_once 'config.php';
// Load the CAS lib
require_once '/usr/share/pear/CAS.php';

// Enable debugging
phpCAS::setDebug();

// Enable verbose error messages. Disable in production!
phpCAS::setVerbose(true);

// Initialize phpCAS
phpCAS::client(CAS_VERSION_2_0, 'CAS-FDQN', 8443, '/cas');

// For production use set the CA certificate that is the issuer of the cert
// on the CAS server and uncomment the line below
phpCAS::setCasServerCACert('/etc/pki/tls/certs/cacert.pem');

// For quick testing you can disable SSL validation of the CAS server.
// THIS SETTING IS NOT RECOMMENDED FOR PRODUCTION.
// VALIDATING THE CAS SERVER IS CRUCIAL TO THE SECURITY OF THE CAS PROTOCOL!
//phpCAS::setNoCasServerValidation();

// force CAS authentication
phpCAS::forceAuthentication();

// at this step, the user has been authenticated by the CAS server
// and the user's login name can be read with phpCAS::getUser().

// logout if desired
if (isset($_REQUEST['logout'])) {
        phpCAS::logout();
}

// for this test, simply print that the authentication was successfull
?>
<html>
  <head>
    <title>phpCAS simple client</title>
  </head>
  <body>
    <h1>Successfull Authentication!</h1>
    <p>the user's login is <b><?php echo phpCAS::getUser(); ?></b>.</p>
    <p>phpCAS version is <b><?php echo phpCAS::getVersion(); ?></b>.</p>
    <p><a href="?logout=">Logout</a></p>
  </body>
</html>


<yambe:breadcrumb self="Apereo CAS example client setup">CentOS 7.x Apereo CAS|Apereo CAS</yambe:breadcrumb>