Fawnoos Blog

Guides, walkthroughs and opinions on Open Source Identity and Access Management.

Search By Keyword Search By Topic

Apereo CAS - QR Code Authentication

Allow client applications and mobile devices to scan a QR code, generated by the Apereo CAS server, and subsequently login.

Apereo CAS - OpenID Connect Scopes & Claims

Configure Apereo CAS to act as an OpenID Connect identity provider, allowing the release of custom scopes and claims to applications.

Apereo CAS 6.6.x Deployment - WAR Overlays

Learn how to configure and build your own CAS deployment via the WAR overlay method, get rich quickly, stay healthy indefinitely and respect family and friends in a few very easy steps.

Apereo CAS - Tracking & Auditing Events via Audit Log

Learn how to track, inspect and store auditable activities and events in Apereo CAS.

Apereo CAS - Working with OpenID Connect & DPoP Access Tokens

A short overview of how to work with OAuth access tokens via a proof-of-posession (DPoP) mechanism. This mechanism allows for the detection of replay attacks with access tokens.

Apereo CAS - Username & Principal Transformations

A short overview of how usernames can be transformed and modified before the credential submission for the authentication request in Apereo CAS.

Apereo CAS - Token Authentication w/ JWTs

A short overview of Apereo CAS handling authentication events accompanied by JWTs as credentials.

Apereo CAS - Self Service User Account Registration & Sign up

Learn how to turn on and configure the account registration flow, allowing users to sign up and create accounts.

Apereo CAS - User Interface Customizations

A review of Apereo CAS user interface customization strategies, including themes for those who enjoy front-end development and the wonderful world of UI/UX.

Apereo CAS - Google Apps Integration

Learn how to use Apereo CAS as a SAML2 identity provider to integrate with Google Apps.

Apereo CAS - RESTful Delegated Authentication

Learn how to use an external REST API to outsource the construction and configuration of external delegated identity providers.

Apereo CAS - Sharing Subject Identifiers with Client Applications

Review configuration options for application policies that allow a CAS, SAML2, or OpenID Connect relying party to receive the authenticated username from Apereo CAS.

Apereo CAS - Ticket Registry World Tour

Review several ticket registry implementation options available to handle ticket and token management, that would be useful for both single and clustered deployments.

Apereo CAS - Dockerized Deployments

Review a number of strategies that allow to run CAS Docker images and configure settings inside the running Docker container.

Apereo CAS - Simple Multifactor Authentication

Learn to configure Apereo CAS to act as a simple multifactor provider itself.

Apereo CAS - Bypass Multifactor Authentication

Learn how to skip and bypass multifactor authentication flows using authentication and/or subject data and a variety of other conditions.

Apereo CAS - Getting Groovy with Spring Webflow

Learn how to customize and tune various aspects of the CAS authentication flow using Groovy.

Apereo CAS - Configuration Security with Jasypt

Learn how to secure CAS configuration settings and properties with Jasypt.

Apereo CAS - SAML2 Delegated Authentication Flows w/ Refeds MFA

An overview of the external SAML2 identity selection and discovery strategy in Apereo CAS while taking into requested authentication contexts, specifically for Refeds MFA.

Shibboleth IdP - SAML2 Authentication Flows w/ Refeds MFA

An overview of the external SAML2 identity selection and discovery strategy in the Shibboleth Identity Provider while taking into requested authentication contexts, specifically for Refeds MFA.

Apereo CAS - OpenID Connect Issuers & Aliases

Learn how to tune your Apereo CAS deployment as an OpenID Connect provider to respond to authentication requests from multiple hosts with different issuer patterns and aliases.

Enter your search term: