Project

General

Profile

Actions

Feature #2356

open

SSO Authentication (CAS Jasig)

Added by Matthieu MARC over 15 years ago. Updated over 11 years ago.

Status:
New
Priority:
Normal
Assignee:
-
Category:
Accounts / authentication
Target version:
-
Start date:
2008-12-18
Due date:
% Done:

0%

Estimated time:
Resolution:

Description

It should be very interesting to integration SSO authentication to permit user to be automaticaly identified if they are already authenticated against an SSO solution. CAS Jasig is a good solution, a ruby on rails client is available : http://www.ja-sig.org/wiki/display/CASC/Ruby+on+Rails+CAS+Client.
So that, user will be identified but SSO can just give back the username. So it can't replace ldap at all, but can be used with ldap : SSO give the username and ldap is used to retrieve information like givenname and email addresse.


Files

redmine-add-cas-support.patch (5.82 KB) redmine-add-cas-support.patch Patch to add CAS support Eric Gerlach, 2010-04-23 06:09
redmine-add-cas-support2.patch (6.89 KB) redmine-add-cas-support2.patch Eric Gerlach, 2010-04-23 18:53

Related issues

Related to Redmine - Feature #940: RADIUS authentication supportNew2008-03-27

Actions
Related to Redmine - Feature #1131: Add support for alternate (non-LDAP) authenticationClosedEric Davis2008-04-28

Actions
Related to Redmine - Feature #2965: CAS AuthenticationNew2009-03-13

Actions
Related to Redmine - Feature #12330: Integrate Kerberos AuthenticationNew

Actions
Actions #1

Updated by Stephanie Collett over 15 years ago

An additional possibility is using OpenID as single sign on solution. It can work with LDAP as well.

http://www.openid-ldap.org/

Actions #3

Updated by Eric Gerlach almost 14 years ago

Attached is a patch which provides CAS functionality, along with settings to boot. Allows both forced and optional CAS login. Don't know if it's up to code standards, but it's a start, and I'm willing to work on it further. Developed on the Debian version, but applied cleanly to HEAD. Haven't tested it on HEAD, though.

Actions #4

Updated by Eric Gerlach almost 14 years ago

Whoops. Previous patch I attached had bugs on head. This patch applies cleanly, and should work perfectly. I'm also working on a few improvements to the logout process, but that requires changes to rubycas-client first.

Actions #5

Updated by Toshi MARUYAMA about 13 years ago

  • Category set to Accounts / authentication
Actions #6

Updated by Thomas Bétrancourt almost 12 years ago

How setup Redmine with CAS on the last stable version of redmine ? (2.0.3)

Actions #7

Updated by Pawel Orzechowski over 11 years ago

"Same question as Thomas", will this patch work with Redmine 2.x (esspecially 2.1)?

And next question is if this can be implemented as the plugin?

Actions #8

Updated by Nick Tan over 11 years ago

+1 to implement this plugin, quite useful in enterprise environment, and suitable for modern ALM systems

Actions

Also available in: Atom PDF