CAS in the cloud LELEU Jérôme

icon indicating a website link https://www.casinthecloud.com

icon company CAS in the cloud icon location Bordeaux, France icon location Authentication and security consulting on CAS, pac4j, OAuth, OpenID Connect, SAML, SSO, IAM

Results 5 issues of CAS in the cloud LELEU Jérôme

Fix build after #6069

To fix the Memcached tests, I have added the `ConcurrentHashMap` class in the registered classes for Kryo. To fix the Ignite tests, I have added `--add-opens java.base/java.util=ALL-UNNAMED` in the `JAVA_OPTS`...

CI

Add logout support for OIDC in authn delegation

8 comment

After a delegated authentication at an OIDC provider, if this OIDC provider sends a logout request to the CAS server, the CAS server does not perform a CAS logout. It...

Authentication
Logout & SLO
OpenID Connect Protocol
Delegated Authentication Pac4J
CI

WIP Allow dynamic nonce for Content Security Policy

1 comment

This PR is ready for merge but tagged as "WIP" to wait after the 7.1.0 release. As explained in this guide: https://content-security-policy.com/nonce/, the "nonce" information of the "Content-Security-Policy" header should...

Pending: Work in Progress

WIP Add Friendly Captcha support

2 comment

This PR is ready for merge but tagged as "WIP" to wait after the 7.1.0 release. This PR adds the Friendly Captcha support to the CAS server. A unit test...

Pending: Work in Progress

Fix double SSO session inconsistency

3 comment

Currently, when a new SSO session is created while an existing one already exists, the CAS server only destroys the existing TGT, but it does not perform a SLO. This...

Pending: Work in Progress