Fawnoos Blog

Guides, walkthroughs and opinions on Open Source Identity and Access Management.

Search By Keyword Search By Topic

Apereo CAS - QR Code Authentication

Posted on August 19, 2022 · 6 mins read

Allow client applications and mobile devices to scan a QR code, generated by the Apereo CAS server, and subsequently login.

Apereo CAS - OpenID Connect Scopes & Claims

Posted on August 18, 2022 · 10 mins read

Configure Apereo CAS to act as an OpenID Connect identity provider, allowing the release of custom scopes and claims to applications.

Apereo CAS 6.6.x Deployment - WAR Overlays

Posted on August 06, 2022 · 46 mins read

Learn how to configure and build your own CAS deployment via the WAR overlay method, get rich quickly, stay healthy indefinitely and respect family and friends in a few very easy steps.

Apereo CAS - Tracking & Auditing Events via Audit Log

Posted on August 01, 2022 · 10 mins read

Learn how to track, inspect and store auditable activities and events in Apereo CAS.

Apereo CAS - Working with OpenID Connect & DPoP Access Tokens

Posted on July 31, 2022 · 9 mins read

A short overview of how to work with OAuth access tokens via a proof-of-posession (DPoP) mechanism. This mechanism allows for the detection of replay attacks with access tokens.

Apereo CAS - Username & Principal Transformations

Posted on July 29, 2022 · 5 mins read

A short overview of how usernames can be transformed and modified before the credential submission for the authentication request in Apereo CAS.

Apereo CAS - Token Authentication w/ JWTs

Posted on July 26, 2022 · 8 mins read

A short overview of Apereo CAS handling authentication events accompanied by JWTs as credentials.

Apereo CAS - Self Service User Account Registration & Sign up

Posted on July 25, 2022 · 10 mins read

Learn how to turn on and configure the account registration flow, allowing users to sign up and create accounts.

Apereo CAS - User Interface Customizations

Posted on July 22, 2022 · 15 mins read

A review of Apereo CAS user interface customization strategies, including themes for those who enjoy front-end development and the wonderful world of UI/UX.

Apereo CAS - Google Apps Integration

Posted on June 17, 2022 · 5 mins read

Learn how to use Apereo CAS as a SAML2 identity provider to integrate with Google Apps.

Apereo CAS - RESTful Delegated Authentication

Posted on June 06, 2022 · 4 mins read

Learn how to use an external REST API to outsource the construction and configuration of external delegated identity providers.

Apereo CAS - Sharing Subject Identifiers with Client Applications

Posted on June 05, 2022 · 11 mins read

Review configuration options for application policies that allow a CAS, SAML2, or OpenID Connect relying party to receive the authenticated username from Apereo CAS.

Apereo CAS - Ticket Registry World Tour

Posted on June 02, 2022 · 7 mins read

Review several ticket registry implementation options available to handle ticket and token management, that would be useful for both single and clustered deployments.

Apereo CAS - Dockerized Deployments

Posted on May 31, 2022 · 8 mins read

Review a number of strategies that allow to run CAS Docker images and configure settings inside the running Docker container.

Apereo CAS - Simple Multifactor Authentication

Posted on May 28, 2022 · 12 mins read

Learn to configure Apereo CAS to act as a simple multifactor provider itself.

Apereo CAS - Bypass Multifactor Authentication

Posted on May 13, 2022 · 8 mins read

Learn how to skip and bypass multifactor authentication flows using authentication and/or subject data and a variety of other conditions.

Apereo CAS - Getting Groovy with Spring Webflow

Posted on April 21, 2022 · 13 mins read

Learn how to customize and tune various aspects of the CAS authentication flow using Groovy.

Apereo CAS - Configuration Security with Jasypt

Posted on March 27, 2022 · 5 mins read

Learn how to secure CAS configuration settings and properties with Jasypt.

Apereo CAS - SAML2 Delegated Authentication Flows w/ Refeds MFA

Posted on March 25, 2022 · 12 mins read

An overview of the external SAML2 identity selection and discovery strategy in Apereo CAS while taking into requested authentication contexts, specifically for Refeds MFA.

Shibboleth IdP - SAML2 Authentication Flows w/ Refeds MFA

Posted on March 24, 2022 · 5 mins read

An overview of the external SAML2 identity selection and discovery strategy in the Shibboleth Identity Provider while taking into requested authentication contexts, specifically for Refeds MFA.

Apereo CAS - OpenID Connect Issuers & Aliases

Posted on March 20, 2022 · 8 mins read

Learn how to tune your Apereo CAS deployment as an OpenID Connect provider to respond to authentication requests from multiple hosts with different issuer patterns and aliases.

View All Posts →
Enter your search term: