casinthecloud / cas-oauth-demo-3.5.x Goto Github PK

View Code? Open in Web Editor NEW

14.0 14.0 17.0 179 KB

Demo webapps to test OAuth support (client and server) in CAS version 3.5.x (x >= 1)

Java 100.00%

cas-oauth-demo-3.5.x's Introduction

Introduction

CAS in the cloud is a full-stacked project to deploy your CAS server in the cloud.

It is based on the CAS server (and CAS management webapp) v5.0.

The tickets are handled via Memcached and the services are defined as JSON files.

Everything is dockerized for the cloud.

Installation

Hosts

You need to locally add the cas-server and cas-management hosts by updating your /etc/hosts/ file:

127.0.0.1     localhost     cas-server     cas-management

Build the CAS webapps

You can build the CAS webapps via the following command at the root directory: ./package.sh

Launch CAS in the cloud

You can run the CAS stack using the following command at the root directory: docker-compose up.

The CAS server is available on the following URL: http://cas-server:8080/login. You can login using leleuj/leleuj or jleleu/jleleu, but of course, the default authentication handler MUST be changed.

The CAS management webapp is available on the following URL: http://cas-management:8081.

cas-oauth-demo-3.5.x's People

Contributors

Stargazers

Watchers

Forkers

songchao168 litao1987 maksimu todun fnkbz fasholaide bingostyle yupengyan lygsniper miareko smldyueyue rijezone spean90 colinchenmaster haitunlianren devenfan xinchufa

cas-oauth-demo-3.5.x's Issues

Small inconsistencies

Hi,
here are the small inconsistencies I've found in the demo:

there is always a warning:
You are currently accessing CAS over a non-secure connection. Single Sign On WILL NOT WORK. In order to have single sign on work, you MUST log in over HTTPS.
Do I need to enable SSL connector on tomcat to make it work without warning?
You don't really have an impression that you are logged in via e.g Linkedin
when you allow permission to access linkedin profile, you don't really see that you are logged in: dedicated page for linked in, Facebook, twitter, etc would be useful, demoing basic features from the specific API, e.g: show profile when logged via LinkedIn.
there is no logout link
It could be constructed by replacing login with logout in the url upon the successfull login.

Thanks for this demo,
best,
Milan

Single logout error

I have two spring security clients authenticate with one cas server. When I hit on logout only that client log out. Client 2 still have access to secured pages. Cas server also gives an error : Error sending message to url endpoint [https://localhost:8070/app2/j_spring_cas_security_check.] Error is server returned HTTP response code : 403

2013-07-26 18:57:10,819 ERROR [org.scribe.up.provider.BaseOAuthProvider] - <Failed to get user data, code : 404 / body : <!DOCTYPE html>
<html lang=en>
  <meta charset=utf-8>
  <meta name=viewport content="initial-scale=1, minimum-scale=1, width=device-width">
  <title>Error 404 (Not Found)!!1</title>
  <style>
    *{margin:0;padding:0}html,code{font:15px/22px arial,sans-serif}html{background:#fff;color:#222;padding:15px}body{margin:7% auto 0;max-width:390px;min-height:180px;padding:30px 0 15px}* > body{background:url(//www.google.com/images/errors/robot.png) 100% 5px no-repeat;padding-right:205px}p{margin:11px 0 22px;overflow:hidden}ins{color:#777;text-decoration:none}a img{border:0}@media screen and (max-width:772px){body{background:none;margin-top:0;max-width:none;padding-right:0}}
  </style>
  <a href=//www.google.com/><img src=//www.google.com/images/errors/logo_sm.gif alt=Google></a>
  <p><b>404.</b> <ins>That’s an error.</ins>
  <p>The requested URL <code>/api/people/@me/@self</code> was not found on this server.  <ins>That’s all we know.</ins>
>
2013-07-26 18:57:10,819 INFO [org.jasig.cas.authentication.AuthenticationManagerImpl] - <org.jasig.cas.support.oauth.authentication.handler.support.OAuthAuthenticationHandler failed to authenticate org.jasig.cas.support.oauth.authentication.principal.OAuthCredentials@7c067f03>
2013-07-26 18:57:10,820 INFO [com.github.inspektr.audit.support.Slf4jLoggingAuditTrailManager] - <Audit trail record BEGIN
=============================================================
WHO: org.jasig.cas.support.oauth.authentication.principal.OAuthCredentials@7c067f03
WHAT: supplied credentials: org.jasig.cas.support.oauth.authentication.principal.OAuthCredentials@7c067f03
ACTION: AUTHENTICATION_FAILED
APPLICATION: CAS
WHEN: Fri Jul 26 18:57:10 CEST 2013
CLIENT IP ADDRESS: 10.5.2.195
SERVER IP ADDRESS: 10.5.2.195
=============================================================

>
2013-07-26 18:57:10,821 INFO [com.github.inspektr.audit.support.Slf4jLoggingAuditTrailManager] - <Audit trail record BEGIN
=============================================================
WHO: org.jasig.cas.support.oauth.authentication.principal.OAuthCredentials@7c067f03
WHAT: error.authentication.credentials.bad
ACTION: TICKET_GRANTING_TICKET_NOT_CREATED
APPLICATION: CAS
WHEN: Fri Jul 26 18:57:10 CEST 2013
CLIENT IP ADDRESS: 10.5.2.195
SERVER IP ADDRESS: 10.5.2.195
=============================================================

casinthecloud / cas-oauth-demo-3.5.x Goto Github PK

cas-oauth-demo-3.5.x's Introduction

Introduction

Installation

Hosts

Build the CAS webapps

Launch CAS in the cloud

cas-oauth-demo-3.5.x's People

Contributors

Stargazers

Watchers

Forkers

cas-oauth-demo-3.5.x's Issues

Small inconsistencies

Single logout error

org.jasig.cas.web.NoSuchFlowExecutionExceptionResolver changed its name

Single logout error

Problem while login with Google provider

Recommend Projects

React

Vue.js

Typescript

TensorFlow

Django

Laravel

D3

Recommend Topics

javascript

web

server

Machine learning

Visualization

Game

Recommend Org

Facebook

Microsoft

Google

Alibaba

D3

Tencent