Project

omniauth-cas3

0.3
Repository is archived
No release in over 3 years
Low commit activity in last 3 years
omniauth-cas3tduehr/omniauth-cas3HomepageDocumentationSource CodeBug TrackerWiki
CAS 3.0 Strategy for OmniAuth
2005
2006
2007
2008
2009
2010
2011
2012
2013
2014
2015
2016
2017
2018
2019
2020
2021
2022
2023
2024
 Popularity
Downloads
13,716,509
Stars
7
Forks
8
Watchers
2
 Releases
Current version
1.1.4
Total releases
4
First release
2015-10-21
Latest release
2017-05-15
 Issues
Open Issues
0
Closed Issues
1
Total Issues
1
Issue Closure Rate
100%
 Pull Requests
Open Pull Requests
0
Closed Pull Requests
0
Merged Pull Requests
4
Pull Request Acceptance Rate
100%
 Development
Primary Language
Ruby
Average date of last 50 commits
2019-11-26
Reverse Dependencies
0

 Dependencies

Development

awesome_print
>= 0
rack-test
~> 0.6
rake
~> 10.0
rspec
~> 3.1.0
webmock
~> 1.19.0

Runtime

addressable
~> 2.3
nokogiri
>= 1.7.1, ~> 1.7
omniauth
~> 1.2
 Project Readme

OmniAuth CAS Strategy Gem Version Build Status

omniauth-cas now has a maintainer please use it instead

This is a OmniAuth 1.0 compatible port of the previously available OmniAuth CAS strategy that was bundled with OmniAuth 0.3. This strategy has also been updated for CAS protocol version 3.0 and patched to deal with namespace issues.

Installation

Add this line to your application's Gemfile:

gem 'omniauth-cas3'

And then execute:

$ bundle

Or install it yourself as:

$ gem install omniauth-cas3

Usage

Use like any other OmniAuth strategy:

Rails.application.config.middleware.use OmniAuth::Builder do
  provider :cas3, host: 'cas.yourdomain.com'
end

Configuration Options

Required

OmniAuth CAS requires at least one of the following two configuration options:

  • url - Defines the URL of your CAS server (i.e. http://example.org:8080)
  • host - Defines the host of your CAS server (i.e. example.org).

Optional

Other configuration options:

  • port - The port to use for your configured CAS host. Optional if using url.

  • ssl - TRUE to connect to your CAS server over SSL. Optional if using url.

  • service_validate_url - The URL to use to validate a user. Defaults to '/serviceValidate'.

  • callback_url - The URL custom URL path which CAS uses to call back to the service. Defaults to /users/auth/cas3/callback.

  • logout_url - The URL to use to logout a user. Defaults to '/logout'.

  • login_url - Defines the URL used to prompt users for their login information. Defaults to /login If no host is configured, the host application's domain will be used.

  • uid_field - The user data attribute to use as your user's unique identifier. Defaults to 'user' (which usually contains the user's login name).

  • ca_path - Optional when ssl is true. Sets path of a CA certification directory. See Net::HTTP for more details.

  • disable_ssl_verification - Optional when ssl is true. Disables verification.

  • merge_multivalued_attributes - When set to true returns attributes with multiple values as arrays. Defaults to false and returns the last value as a string.

  • on_single_sign_out - Optional. Callback used when a CAS 3.1 Single Sign Out request is received.

  • fetch_raw_info - Optional. Callback used to return additional "raw" user info from other sources.

    provider :cas3,
  fetch_raw_info: Proc.new { |strategy, opts, ticket, user_info, rawxml|
    return {} if user_info.empty? || rawxml.nil? # Auth failed

    extra_info = ExternalService.get(user_info[:user]).attributes
    extra_info.merge!({'roles' => rawxml.xpath('//cas:roles').map(&:text)})
    extra_info
  }

Configurable options for values returned by CAS:

  • uid_key - The user ID data attribute to use as your user's unique identifier. Defaults to 'user' (which usually contains the user's login name).
  • name_key - The data attribute containing user first and last name. Defaults to 'name'.
  • email_key - The data attribute containing user email address. Defaults to 'email'.
  • nickname_key - The data attribute containing user's nickname. Defaults to 'user'.
  • first_name_key - The data attribute containing user first name. Defaults to 'first_name'.
  • last_name_key - The data attribute containing user last name. Defaults to 'last_name'.
  • location_key - The data attribute containing user location/address. Defaults to 'location'.
  • image_key - The data attribute containing user image/picture. Defaults to 'image'.
  • phone_key - The data attribute containing user contact phone number. Defaults to 'phone'.

Migrating from OmniAuth 0.3

Given the following OmniAuth 0.3 configuration:

provider :CAS, cas_server: 'https://cas.example.com/cas/'

Your new settings should look similar to this:

provider :cas3,
         host:      'cas.example.com',
         login_url: '/cas/login',
  	     service_validate_url: '/cas/p3/serviceValidate'

If you encounter problems with SSL certificates you may want to set the ca_path parameter or activate disable_ssl_verification (not recommended).

Contributing

  1. Fork it
  2. Create your feature branch (git checkout -b my-new-feature)
  3. Commit your changes (git commit -am 'Added some feature')
  4. Push to the branch (git push origin my-new-feature)
  5. Create new Pull Request

Thanks

Special thanks go out to the following people

  • @dlindahl For the original work in porting this from OmniAuth 0.3
  • Phillip Aldridge (@iterateNZ) and JB Barth (@jbbarth) for helping out with Issue #3
  • Elber Ribeiro (@dynaum) for Ubuntu SSL configuration support
  • @rbq for README updates and OmniAuth 0.3 migration guide