Skip to content

CAS Login

Jump to bottom Edit New page
Christophe Demko edited this page Mar 5, 2017 · 8 revisions

Installation

For the installation, you have to install the plg_system_caslogin package.

Configuration

You have to enable the plugin and to create an external login server using it.

The window is divided in 2 panels, the Server details is common to all the external login plugins and the other panel contains the parameters specific to the CAS Plugin.

CAS parameters

  • Use SSL Use or not a secured connection
  • URL The CAS server URL (cas.univ-montp2.fr for instance).
  • Path The CAS server path (cas for instance).
  • Port The CAS server port (443 for instance).
  • Use locale Use the locale parameter.

Attributes

This slider contains xpath parameters to get the user attributes.

  • Username xpath The username xpath in the CAS response.

    string(cas:user)

    for instance or

    concat(
  cas:attributes/cas:attribute[@name='uid'],
  substring(
    cas:attributes/cas:attribute[@name = 'edupersonprincipalname'],
    1 div not(cas:attributes/cas:attribute[@name = 'uid'])
  ),
  substring(
    cas:user,
    1 div not(cas:attributes/cas:attribute[
                @name = 'uid'
             or @name = 'edupersonprincipalname'
    ])
  )
)

  • Full name xpath The full name xpath in the CAS response.

    string(cas:user)

    for instance or

    concat(
  cas:attributes/cas:attribute[@name = 'displayname'],
  substring(
    cas:attributes/cas:attribute[@name='edupersonprincipalname'],
    1 div not(cas:attributes/cas:attribute[@name = 'displayname'])
  ),
  substring(
    cas:attributes/cas:attribute[@name = 'uid'],
    1 div not(cas:attributes/cas:attribute[
                @name = 'displayname'
             or @name = 'edupersonprincipalname'
    ])
  ),
  substring(
    cas:user,
    1 div not(cas:attributes/cas:attribute[
                @name = 'displayname'
             or @name = 'edupersonprincipalname' or @name = 'uid'
    ])
  )
)

  • Email xpath The email xpath in the CAS response.

    concat(
  cas:user,
  substring('@univ-montp2.fr', 1 div not(contains(cas:user, '@')))
)

    for instance or

    concat(
  cas:attributes/cas:attribute[@name = 'mail'],
  substring(
    cas:user,
    1 div not(cas:attributes/cas:attribute[@name = 'mail'])
  )
)

  • Groups xpath The groups xpath in the CAS response.

    cas:attributes/cas:attribute[@name = 'supannaffectation']

    for instance

  • Integer groups To consider integer groups as their Joomla! identifier.

  • Group separator The string that separates groups.

Connection

  • Automatic login To automatically log in a user when he is already logged in on the CAS server.
  • Automatic logout To automatically log out a user on the CAS server when he logs out on the Joomla! site.
  • Logout URL The logout URL transmitted to the CAS server.
  • Timeout The timeout server
  • Certificate file The file path holding one or more certificates to verify the peer with.
  • Certificate path The directory path holding multiple CA certificates.
Add a custom footer
Add a custom sidebar
Clone this wiki locally