CAS Authentication by PKE usb token
62 views
Skip to first unread message
Meysam Shirazi
Jan 23, 2021, 4:22:26 AM1/23/21
to CAS Community
Hello every one
I'm looking for a way to develop a solution bade on Apereo CAS to authenticate user by PKI enabled usb token like this one(https://cpl.thalesgroup.com/access-management/authenticators/pki-usb-authentication/etoken-5110-usb-token).
I will appreciate any help to do that.
Ray Bon
Jan 25, 2021, 11:55:03 AM1/25/21
to cas-...@apereo.org
Meysam,
Start with reviewing Authentication|Methods and Multifactor Authentication in cas docs, https://apereo.github.io/cas/6.3.x/index.html.
There are a lot of options, one of which is custom where you write groovy scripts (instead of modifying or adding to cas code).
Ray
On Sat, 2021-01-23 at 01:22 -0800, Meysam Shirazi wrote:
Notice: This message was sent from outside the University of Victoria email system. Please be cautious with links and sensitive information.
Hello every oneI'm looking for a way to develop a solution bade on Apereo CAS to authenticate user by PKI enabled usb token like this one(https://cpl.thalesgroup.com/access-management/authenticators/pki-usb-authentication/etoken-5110-usb-token).I will appreciate any help to do that.
--
Ray Bon
Programmer Analyst
Development Services, University Systems
2507218831 | CLE 019 | rb...@uvic.ca
I respectfully acknowledge that my place of work is located within the ancestral, traditional and unceded territory of the Songhees, Esquimalt and WSÁNEĆ Nations.
Meysam Shirazi
Jan 26, 2021, 2:48:27 AM1/26/21
to CAS Community, Ray Bon
Thanks Ray for your reply.
OK, It's a good idea. I found Custom Authentication Strategies here :https://apereo.github.io/cas/6.3.x/installation/Configuring-Custom-Authentication.html so it says I can do it in 3 steps:
- Design the authentication handler.
- Register the authentication handler with the CAS authentication engine.
- Let CAS to recognize the authentication configuration.
Meysam
Ray Bon
Jan 26, 2021, 11:26:15 AM1/26/21
to cas-...@apereo.org, shirazi...@gmail.com
Meysam,
There is custom webflow, https://apereo.github.io/cas/6.3.x/webflow/Webflow-Customization.html, for changing or adding steps/pages to the log in steps.
Ray
Meysam Shirazi
Jan 27, 2021, 6:06:38 AM1/27/21
to CAS Community, Ray Bon, Meysam Shirazi
OK, it seems that using custom webflow is not a good idea for some one how is not "one must possess a reasonable level of understanding of the webflow’s internals and injection policies."
So is it a clear way to develop a new CAS module(Authentication Method or MFA) with Webflow Auto Configuration?
Ray Bon
Jan 27, 2021, 12:13:58 PM1/27/21
to cas-...@apereo.org, shirazi...@gmail.com
Meysam,
Here are some resources on custom MFA:
and mix those with the cas documentation.
I am looking into a custom MFA flow now. I will let you know my progress.
Ray
Meysam Shirazi
Jan 27, 2021, 2:21:55 PM1/27/21
to CAS Community, Ray Bon, Meysam Shirazi
Thanks,
As you know all of MFA providers are implemented in separate packages in support category, so they can be added(activate) as a dependencies to the main project as a separate modules. Is it possible to build a custom MFA provider as a new module just like other providers?
Ray Bon
Jan 27, 2021, 2:54:19 PM1/27/21
to cas-...@apereo.org, shirazi...@gmail.com
That is exactly what I am planning to do. Here is hoping management gives me the time.
Ray
Maysam Shirazi
Jan 29, 2021, 3:05:21 AM1/29/21
to Ray Bon, cas-...@apereo.org
OK Ray, Good luck.
Meysam
Maysam Shirazi
Jan 29, 2021, 3:13:40 AM1/29/21
to Ray Bon, cas-...@apereo.org
Is that the way (https://apereo.github.io/2019/03/12/cas61x-codebase-feature-build) can we do to develop a new module for CAS?
Ray Bon
Jan 29, 2021, 2:34:40 PM1/29/21
to shirazi...@gmail.com, cas-...@apereo.org
That is the process.
It gets updated for each release. More recent blogs are available at https://fawnoos.com/blog/.
Ray
Reply all
Reply to author
Forward
0 new messages