Leveraging CAS with Luminis

March 28, 2006

In SunGard Higher Education's Luminis product one of the many add-on packages you can install is CAS support. CAS is an acronym for Central Authentication Service. This WebISO solution is one of the most common in higher education. CAS was created originally by Yale, but ongoing support has been taken over by JA-SIG. When the CAS package is installed in Luminis, it makes Luminis act as a CAS authentication provider. Coupled with this built-in Luminis support, we use a CAS library called phpCAS that adds to the simplicity of deploying this within our environment.

Time and again, CAS has been proven an effective and simple way for us to quickly drop authentication ability into our homegrown PHP applications. Once a function was developed, this was easily reused across dozens of applications within a few short months. The ease of deployment made it easy to convince various developers to switch from custom authentication schemes.

In a PHP application on any of the servers in your environment you can do something like the following:

PLAIN TEXT
PHP:
  1. <?php
  2.  
  3. function casify()
  4. {
  5.     // import phpCAS lib (http://esup-phpcas.sourceforge.net/)
  6.     include_once($GLOBALS['INCLUDES'].'/cas/CAS.php');
  7.  
  8.     // initialize phpCAS
  9.     phpCAS::client(CAS_VERSION_2_0,'luminis.institution.edu',443,'cas/');
  10.  
  11.     // check CAS authentication
  12.     phpCAS::forceAuthentication();
  13.  
  14.     // at this step, the user has been authenticated by the CAS server
  15.     // and the user's login name can be read with phpCAS::getUser().
  16.  
  17.     return phpCAS::getUser();
  18. }
  19.  
  20.  
  21. $username = casify();
  22.  
  23. // nothing past the execution of casify() would occur without acquiring a valid CAS ticket
  24.  
  25. ?>

Note: the preceding code is an example. There is more sophisticated functionality that can be accomplished using CAS, this is merely a starting point for people interested in this WebISO technology.

cas, development, education, higher education, identity management, jasig, luminis, php, phpcas, security, sungard, sungard higher education, web development, yale, yalecas

Tags: , , , , , , , , , , , , , ,

Related:

Posted by zbtirrell | Filed Under Technology Bits 


Comments

4 Responses to “Leveraging CAS with Luminis”

  1. ken on March 29th, 2006 1:53 pm

    Are you confident that in exposing your CAS code you are not introducing any security holes for would be authenticators?

  2. zbtirrell on March 29th, 2006 2:54 pm

    This isn’t exactly what we do in our environment. In fact what you see in the function I wrote is primarily a series of calls to phpCAS functions which are all documented on their site. There is a lot of additional complexity we’ve coded in around this. As I said in the post, this is “merely a starting point for people interested in this WebISO technology.”

  3. Identity Future » Blog Archive » Leveraging CAS with Luminis on March 31st, 2006 10:53 am

    [...] From NoSheep.net’s article: In SunGard Higher Education’s Luminis product one of the many add-on packages you can install is CAS support. CAS is an acronym for Central Authentication Service. This WebISO solution is one of the most common in higher education. CAS was created originally by Yale, but ongoing support has been taken over by JA-SIG. When the CAS package is installed in Luminis, it makes Luminis act as a CAS authentication provider. Coupled with this built-in Luminis support, we use a CAS library called phpCAS that adds to the simplicity of deploying this within our environment. [...]

  4. No Sheep » Shibboleth For AuthZ on June 27th, 2006 9:38 am

    [...] Until this point I had only though of Shibb as a solution for inter-organizational web-based single-sign on (Federated SSO or WebISO or WebSSO). I knew I could use Shibboleth internally to serve as my WebSSO, but we already have a hugely successful implementation of CAS in our environment. Additionally I haven’t been able to point at a killer application of the federated WebSSO ability. I knew this driver would be coming, but without immediate demand I was luke warm on Shibboleth. [...]

Got something to say?





User contributed tags: luminis cas (117) - free Burning Crusade Authentication Key (97) - t (96) - wow authentication code (89) - mss (64) - burning crusade authentication key crack (56) - CAS luminis (53) - Free WOW Authentication Key (52) - burning crusade authentication key (41) - WoW authentication codes (38) - shibboleth + php (36) - wow authentication key (28) - burning crusade authentication code (26) - free wow authentication code (25) - world of warcraft authentication key (24) - WOW Authentication Key crack (24) - free wow authentication codes (24) - authentication code for WoW (19) - world of warcraft authentication code (19) - World Of WarCraft Authentication Key crack (18) - warcraft 3 authentication code (18) - free burning crusade authentication code (16) - authentication codes for wow (15) - Free World Of Warcraft Authentication key (15) - free world of warcraft authentication code (14) - warcraft 3 authentication codes (13) - free burning crusade authentication keys (12) - free warcraft authentication key (12) - free wow authentication keys (12) - luminis (12) - luminis shibboleth (12) - Burning Crusade Authentication Key hack (11) - f (11) - shibboleth cas (11) - world of warcraft authentication code crack (11) - Free WoW burning crusade authentication key (10) - free Authentication codes for wow (10) - burning crusade authentication codes (10) - cas wow (9) - free authentication code for w.o.w (9) - world of warcraft authentication crack (9) - warcraft authentication key (9) - nosheep net (9) - world of warcraft free authentication key (8) - WOW cracked (8) - burning crusade authentication crack (8) - world of warcraft authentication codes (8) - warcraft authentication codes (8) - MY (8) - "Burning Crusade Authentication Key" free (8) - Authentication code WoW (8) - all (8) - wow burning crusade free Authentication Key (7) - facebook luminis (7) - cas and dog (7) - luminis 4 (7) - luminis and cas (7) - "authentication key crack" (7) - BURNING crusade authentication key code (6) - luminis support (6) - warcraft 3 authentication key (6) - Burning crusade crack (6) - luminis no sheep (6) - luminis library (6) - WoW authentication code crack (6) - authentication code for world of warcraft (6) - crack Burning Crusade Authentication Key (6) - php cas (6) - http://www google com/search (6) - free authentication code for world of warcraft (6) - sungard shibboleth (6) - free world of warcraft Burning Crusade Authentication K (6) - burning crusade free authentication key (6) - cas yale (6) - warcraft 3 key code (6) - world of warcraft free authentication code (5) - wow cracked server (5) - Burning Crusade Authentication Key torrent (5) - authentication code for world of warcraft burning crusa (5) - CAS and luminis (5) - luminis facebook (5) - free burning crusade authentication key crack (5) - free authentication code for burning crusade (5) - Wow authentication key, free (5) - free Authentication Key for world of warcraft (5) - worldofwarcraft authentication code (5) - Warcraft Authentication (5) - WoW authentication crack (5) - free world of warcraft authentication codes (5) - PH (5) - free burning crusade key code (5) - WOW free authentication Code (5) - free authentication key for WOW (5) - warcraft Authentication key crack (5) - worldofwarcraft authentication codes (5) - free world of warcraft burning crusade authentication c (4) - wow authentication key cracks (4) - free wow authentication key crack (4) - Free Burning crusade Authentication codes (4) - free wow authentification codes (4) - Free World of WarCraft Authentication Key Crack (4) - WOW crack code (4) - CAS php (4) - authentication key for wow (4) - authentication key world of warcraft crack (4) - Authentication Key World of Warcraft (4) - world of warcraft free authentication codes (4) - xbox360 ca s in y a l e (4) - atom feed luminis (4) - authentication codes for warcraft 3 (4) - warcraft 2 authentication code (4) - WoW Authentification Code (4) - crack code for WOW (4) - WOW free Authentication Key (4) - cas dog (4) - luminis - authentication (4) - free auth codes for wow (4) - free Authentication Key for Burning Crusade (4) - wow key crack (4) - wow cracks (4) - world of warcraft authentication key hack (4) - world of warcraft cracked Authentication Key (4) - world of warcraft burning crusade authentication key (4) - burning crusade auth code (3) - free burning crusades authentication key (3) - free wow athentication key crack (3) - The Burning Crusade authentication key crack (3) - WOW Authentication (3) - worldofwarcraft authentication key (3) - authentification code for wow (3) - World of Warcraft Burning Crusade authentication KEY cr (3) - carck Authentication Key wow (3) - wow crack codes (3) - unique Burning Crusade Authentication Key crack (3) - warcraft III authentication code (3) - luminis sungard code (3) - world of warcraft authentication codes "crack" (3) - authentication key burning crusade download (3) - world of warcraft authentication key code free (3) - "rss feed" +Luminis 3 (3) - crack codes for WOW (3) - burning crusade Authentication code free (3) - luminis CAS support (3) - free authentication code WOW (3) - wow authentication code sample (3) - authentication codes WOW (3) - World of Warcraft Authentication Key CODE (3) - wow burning crusade authentication code (3) - WOW burning crusade Authentication hack (3) - free burning crusade authentication key download (3) -