Fawnoos Blog

Guides, walkthroughs and opinions on Open Source Identity and Access Management.

Search By Keyword Search By Topic

Git - Shallow Clones & Branches

A quick tip on how to fetch remote branches of a git repository after it has been shallow-cloned.

Apereo CAS - Authentication Flow Interrupts

Interrupt the authentication flow in Apereo CAS with notifications and advertisements, dictating CAS should treat the authenticated session with configuration and compassion.

Apereo CAS - Efficient Deployments with Class Data Sharing

Learn how to build, unpack and run an unpackaged Apereo CAS server via Spring Boot and Application Class-Data Sharing for optimal performance.

Apereo CAS - Attribute Repository Selection Rules

Learn how to connect and link authentication attempts to person-attribute sources to control and filter data that is shared with registered applications and relying parties.

Apereo CAS - Conditional Attribute Release Policies

Learn how to configure CAS to conditionally activate attribute release policies to share claims and attributes with applications and relying parties dynamically and only when necessary.

Apereo CAS - Quick Deployment Options

Learn how to build and deploy an Apereo CAS server quickly for demons, integration tests, and profit.

Apereo CAS - SAML2 Protocol & Identity Provider

Learn how to configure Apereo CAS to act as a SAML 2.0 identity provider.

Apereo CAS 7.0.x Deployment - WAR Overlays

Learn how to configure and build your own CAS deployment via the WAR overlay method, get rich quickly, stay healthy indefinitely and respect family and friends in a few very easy steps.

Apereo CAS - Multifactor Provider Selection

Learn how to configure CAS to integrate with and use multiple multifactor providers at the same time. This post also reveals a few super secret and yet open-source strategies one may use to select appropriate providers for authentication attempts, whether automatically or based on a menu.

Apereo CAS - Actuator Endpoints & Monitoring

Gain insight into your running Apereo CAS deployment in production. Learn how to monitor and manage the server by using HTTP endpoints and gather metrics to diagnose issues and improve performance.

Apereo CAS - OAuth 2.0 Protocol & Identity Provider

Learn how to configure Apereo CAS to act as an OAuth 2.0 identity provider.

Apereo CAS - Database Authentication & Attributes

Learn how to configure database authentication in Apereo CAS.

Apereo CAS - Account Profile Management

Review options that allow end-users to examine and review their account profile in a mini portal like environment.

Apereo CAS - Dockerized Deployments

Review a number of strategies that allow to create Docker images for your CAS deployment and run Docker containers with ease.

Apereo CAS - Delegated Authentication to SAML2 Identity Providers

Learn how your Apereo CAS deployment may be configured to delegate authentication to an external SAML2 identity provider.

Apereo CAS - Master of Puppeteer

Learn how to take advantage of Puppeteer to automate browser-based integration and/or functional tests.

Apereo CAS - Suspicious Authentication Attempts

Learn how to tune the Apereo CAS deployment to track and detect risky authentication attempts based on a variety of factors, while allowing for follow-up configurations and verifications.

Apereo CAS - Weak Password Detection

Learn how to tune the password management features of your Apereo CAS deployment to detect and catch weak passwords that fail the strength criteria of your password policy.

Keycloak - Authentication & User Federation

Learn how to customize Keycloak to build your authentication strategy using Keycloak's user federation features.

Apereo CAS - Have you been pawned?

Learn how Apereo CAS may be configured to check for pawned passwords and warn the user, using the haveibeenpawned.com service

Apereo CAS - LDAP Password Policy Handling with Groovy

Learn how to manage and enforce password policies for LDAP accounts, and take control of the policy handling with Groovy.

Enter your search term: