Actions
Task #3374
openTask #3370: JIP/KAAS support
Task #3371: Cas module
DelegatedAuthentication module
Start date:
05/29/2023
Due date:
% Done:
80%
Estimated time:
80.00 h
Owner:
Jan Potočiar
Story points:
5
Description
- Implements user login via ICU/KAAS (redirects, session validation).
- It allows requesting the addition/validation of attributes from the user if they were not included in the data from the IdP.
Files
Updated by Jan Potočiar 10 months ago
- % Done changed from 0 to 40
Status 9.6.2023
Done:
Done:
- Local environment setup (CAS, CASified application, pac4j, mock of KAAS)
- Analysis of pac4j and CAS related to KAAS client
- PoC pac4j client (communicating with KAAS mock) and its integration into CAS
- CAS and pac4j analysis for validation
- Validation design
- SOAP client for pac4j client
- Validation implementation
- Redirect to form
- Form creation / validation
- CAS accepting the form data
- Testing against KAAS test environment
Updated by David Klíma 8 months ago
When used with the OIDC service org.apereo.cas.services.OidcRegisteredService
, an error occurs when the KAAS button is clicked:
Aug 9 10:16:03 appliance194.bcv cas[964]: #033[1;31m2023-08-09 10:16:03,226 ERROR [org.apereo.cas.web.DefaultDelegatedClientAuthenticationWebflowManager] - <Delegated client identifier cannot be located in the authentication request [https://172.31.255.194/cas/login?client_name=Kaas&sessionId=01-8c57c8b70acb41598456914f17ae933b]>#033[m Aug 9 10:16:03 appliance194.bcv cas[964]: #033[1;31m2023-08-09 10:16:03,227 ERROR [org.apereo.cas.web.flow.DelegatedClientAuthenticationAction] - <>#033[m Aug 9 10:16:03 appliance194.bcv cas[964]: #033[33m2023-08-09 10:16:03,227 WARN [org.apereo.cas.web.flow.DelegatedClientAuthenticationAction] - <>#033[m
Actions