Enterprise Single Sign-On for All

View on GitHub

Overview

The pac4j project is a security engine with specific authentication mechanisms, called authenticators, for MongoDB, LDAP, JWT, RDBMS…

By using the cas-server-integration-pac4j module, a pac4j authenticator (and profile creator) can be wrapped in a CAS authentication handler and used for authentication.

Dependency

Support is added by including the following dependency in the Maven WAR overlay:

1
2
3
4
5

<dependency>
  <groupId>org.jasig.cas</groupId>
  <artifactId>cas-server-integration-pac4j</artifactId>
  <version>${cas.version}</version>
</dependency>

Configuration

You can use the first implementation for CAS username/password credentials: org.jasig.cas.support.pac4j.authentication.handler.support.UsernamePasswordWrapperAuthenticationHandler.

For example, in the deployerConfigContext.xml file:

1
2
3

<bean id="primaryAuthenticationHandler" 
    class="org.jasig.cas.integration.pac4j.authentication.handler.support.UsernamePasswordWrapperAuthenticationHandler" />

You may use a specific pac4j authenticator using the setAuthenticator method, the default one being the SimpleTestUsernamePasswordAuthenticator.