Fawnoos Blog

Guides, walkthroughs and opinions on Open Source Identity and Access Management.

Search By Keyword Search By Topic

Apereo CAS - Multifactor Authentication w/ WebAuthn FIDO2

Posted on June 23, 2025 · 7 mins read

Learn how to configure Apereo CAS to support WebAuthn FIDO2 for multifactor and passwordless authentication scenarios.

Apereo CAS - Authentication Handler Lifecycles

Posted on June 13, 2025 · 6 mins read

Learn how to manage authentication states and activate authentication handlers on-demand and dynamically when necessary.

Apereo CAS - Self Service User Account Registration & Sign up

Posted on May 04, 2025 · 10 mins read

Learn how to turn on and configure the account registration flow, allowing users to sign up and create accounts.

Apereo CAS - SAML2 Identity Provider Discovery

Posted on April 02, 2025 · 7 mins read

Learn how to enable SAML2 identity provider discovery and selection when delegating authentication to external SAML2 identity providers.

Apereo CAS 7.2.x Deployment - WAR Overlays

Posted on March 30, 2025 · 57 mins read

Learn how to configure and build your own CAS deployment via the WAR overlay method, get rich quickly, stay healthy indefinitely and respect family and friends in a few very easy steps.

Apereo CAS - Principal Transformation with Groovy

Posted on February 27, 2025 · 4 mins read

Learn how to transform the username prior to authentication attempts.

Apereo CAS - Building Custom Actuator Endpoints

Posted on February 02, 2025 · 9 mins read

Learn how to build your own actuator endpoints in Apereo CAS with Spring Boot.

Apereo CAS - Audit Logs Managed by SQL Databases

Posted on February 01, 2025 · 6 mins read

Learn how to store, read, and manage CAS audit logs in SQL databases.

Apereo CAS - JWT All the Things

Posted on January 29, 2025 · 21 mins read

A tutorial on how to let Apereo CAS handle authentication events accompanied by JWTs.

Apereo CAS - Customized Authentication Strategy

Posted on January 27, 2025 · 15 mins read

Master writing custom authentication handlers in CAS to verify user identity from custom account stores and observe the operations using Micrometer to collect metrics and statistics for better troubleshooting and monitoring.

Apereo CAS - Managing SSO Sessions

Posted on January 08, 2025 · 4 mins read

A quick review of how to manage and administer single sign-on sessions in Apereo CAS via dedicated endpoints, to view and delete active user sessions.

Apereo CAS - Controlling SAML2 Authentication Context Classes

Posted on November 22, 2024 · 7 mins read

Learn how to define and dynamically control the SAML2 AuthnContext attribute in the final SAML2 response, globally or per SAML2 service provider.

Apereo CAS - User Interface Customizations

Posted on November 12, 2024 · 5 mins read

Learn how to handle a number of rather common customizations when it comes to changing the CAS user interface and themes.

Apereo CAS - Working with Multiple MFA Profiles

Posted on October 19, 2024 · 7 mins read

Learn how to register multiple multifactor authentication profiles in CAS using Duo Security, and dynamically seelct the appropriate provider based on user claims or application policies.

Apereo CAS - Configuration Security with Docker Secrets

Posted on October 14, 2024 · 4 mins read

Learn how to load CAS configuration settings from Docker secrets.

Apereo CAS - Microsoft Office365 & Multifactor Authentication

Posted on October 11, 2024 · 10 mins read

Learn how to inform Microsoft Office365 and/or ADFS that multifactor authentication is successfully carried out by CAS via the likes of Duo Security, using a SAML2 integration.

Deploying Apereo CAS Behind a Proxy with SSL Termination

Posted on October 11, 2024 · 3 mins read

A short tutorial on how to get Apereo CAS deployed behind proxies and load balancers that aim to terminate SSL.

Apereo CAS - Manage SAML2 Identity Provider Metadata via AWS S3 Buckets

Posted on October 04, 2024 · 4 mins read

Learn how to store SAML2 identity provider metadata in AWS S3 buckets

Apereo CAS - Externalized Log4j2 Configuration via Spring Boot

Posted on October 04, 2024 · 6 mins read

Learn how to control and externalize your Log4j2 configuration using Spring's Environment

Apereo CAS - OpenID Connect Issuers & Aliases

Posted on October 02, 2024 · 8 mins read

Learn how to tune your Apereo CAS deployment as an OpenID Connect provider to respond to authentication requests from multiple hosts with different issuer patterns and aliases.

Apereo CAS - Actuator Endpoints Security with SQL Databases

Posted on October 01, 2024 · 7 mins read

Learn how to secure CAS actuator endpoints using basic authentication and accounts found in SQL databases via Spring Security.

View All Posts →
Enter your search term: