CAS and Authorization
jehan procaccia
jehan.procaccia at int-evry.fr
Fri Mar 7 05:16:15 EST 2008
apache mod_auth_cas allows to chain an authz module like mod_athnz_ldap.
http://www.ja-sig.org/wiki/display/CASC/mod_auth_cas
for example, after authenticate with cas (authn) you can control who
access a page with an authorization (authz) like this:
<Location /usage_public>
AuthType Cas
AuthName "INT auth"
AuthLDAPUrl "ldap://ldapserver.domain.fr/dc=example,dc=fr"
Require ldap-attribute eduPersonAffiliation=employee
# Require valid-user
</Location>
if it helps ...
Alexandra Keller wrote:
>
> Hi,
>
> I’m sorry, this question is really basic:
>
> Is it possible to use CAS for authorization?
>
> I know that CAS is not built for this, but are there any additional
> modules to the CAS server to carry out authorization?
>
> Thank you very much!
>
> Alexandra
>
> ------------------------------------------------------------------------
>
> _______________________________________________
> Yale CAS mailing list
> cas at tp.its.yale.edu
> http://tp.its.yale.edu/mailman/listinfo/cas
>
More information about the cas
mailing list