You can clone with
I'll have a look at this when i can but to have it on record:
If 'Authentication required' is selected in auth admin and a valid CAS user that is not registered with redmine navigates to the redmine site, we end up with an eternal loop as any errors generated redirect to cas authentication which passes as there's a valid tgt.
Redirecting to an error page that bypasses normal auth would be changing common functionality (hence ugly and hacky). Might look into how tricky it would be to just fall back to local login screen with an error msg... which isn't ideal either X( Maybe display the error on an alert, and then locally tag existing tgt as invalid as far as redmine is concerned???
My instance appears to endless redirect if the CAS user is not already in the Redmine user list. - Apologies I was using the 'other' CAS Redmine plugin hosted on gitorious http://www.redmine.org/plugins/redmine_cas which just posted a fix. Any idea why 2 plugins for the same exact small task?
I have found that the redmine_cas plugin has an issue where it wont allow API requests to be authenticated. It blocks any requests whether i put the internally stored password or API tokens which will work if the plugin is not enabled. I havn't tested this one yet to see if it has the same problem.