Apache2::AuthCASSimple: Apache2 module to authentificate through a cas server

DESCRIPTION

Apache2::AuthCASSimple is an authentication module for Apache2/mod_perl2. It allow you to authentificate users through a Yale \s-1CAS\s0 server. It means you don't need to give login/password if you've already be authentificate by the \s-1CAS\s0 server, only tickets are exchanged between Web client, Apache2 server and \s-1CAS\s0 server. If you not're authentificate yet, you'll be redirect on the \s-1CAS\s0 server login form.

This module allow the use of simple text files for sessions.

SYNOPSIS

  PerlOptions +GlobalRequest

  <Location /protected>
    AuthType Apache2::AuthCASSimple
    PerlAuthenHandler Apache2::AuthCASSimple

    PerlSetVar CASServerName my.casserver.com
    PerlSetVar CASServerPath /
    # PerlSetVar CASServerPort 443
    # PerlSetVar CASServerNoSSL 1
    PerlSetVar CASSessionTimeout 3660
    PerlSetVar CASSessionDirectory /tmp
    # PerlSetVar CASFixDirectory /
    # PerlSetVar ModProxy 1
    # PerlSetVar HTTPSServer 1

    require valid-user
  </Location>

order deny,allow deny from all

require user xxx yyyy

satisfy any

CONFIGURATION

CASServerName: Name of the \s-1CAS\s0 server. It can be a numeric \s-1IP\s0 address.
CASServerPort: Port of the \s-1CAS\s0 server. Default is 443.
CASServerPath: Path (\s-1URI\s0) of the \s-1CAS\s0 server. Default is \*(L"/cas\*(R".
CASServerNoSSL: Disable \s-1SSL\s0 transaction wih \s-1CAS\s0 server (\s-1HTTPS\s0). Default is off.
CASCaFile: \s-1CAS\s0 server public key. This file is used to allow secure connection between the webserver using Apache2::AuthCASSimple and the \s-1CAS\s0 server. \s-1DEPRECATED\s0 : Authen::CAS::Client use LWP::UserAgent to make https requests
CASSessionTimeout: Timeout (in second) for session create by Apache2::AuthCASSimple (to avoid \s-1CAS\s0 server overloading). Default is 60. -1 means disable. 0 mean infinite (until the user close browser).
CASSessionDirectory: Directory where session data are stored. Default is /tmp.
CASFixDirectory: Force the path of the session cookie for same policy in all subdirectories else current directory is used.
ModProxy: Apache2 mod_perl2 don't be use with mod_proxy. Default is off.
HTTPSServer: If you want to keep a \s-1HTTPS\s0 server for all data. Default is 0.
\s-1OK\s0 \s-1AUTH_REQUIRED\s0 \s-1DECLINED\s0 \s-1REDIRECT\s0 \s-1SERVER_ERROR\s0 M_GET: Apache constants to make pod coverage happy

METHOD

handler

call by apache2

VERSION

This documentation describes Apache2::AuthCASSimple version 0.10

BUGS AND TROUBLESHOOTING

Old expired sessions files must be deleted with an example provided script : \*(C`delete_session_data.pl\*(C'
Apache::Session::Wrapper certainly need Apache2::Cookie
$r must be global for sessions with Apache::Session::Wrapper, add PerlOptions +GlobalRequest in your virtualhost conf
Apreq module must be enable in debian a2enmod apreq or add LoadModule apreq_module /usr/lib/apache2/modules/mod_apreq2.so in your apache configuration file

Please submit any bug reports to [email protected].

NOTES

Requires \*(C`mod_perl 2\*(C' version 2.02 or later Requires Authen::CAS::Client Requires Apache::Session::Wrapper

AUTHOR

Yves Agostini CPAN ID: YVESAGO Univ Metz [email protected] http://www.crium.univ-metz.fr

COPYRIGHT

This program is free software; you can redistribute it and/or modify it under the same terms as Perl itself.

The full text of the license can be found in the \s-1LICENSE\s0 file included with this module.

Apache2::AuthCASSimple (3pm)