IDaaS Open Platform

Configuring CAS Protocol Application SSO

Feature Introduction

# Overview

In addition to supporting the configuration of the CAS protocol as an authentication source for logging into various application systems via CAS protocol authentication, the IDaaS platform also supports integrating applications through the CAS protocol to achieve single sign-on (SSO) for applications. Using IDaaS as the authentication platform, users can directly jump to and log into the application after logging into the IDaaS User Center, without needing to log in a second time.

# Prerequisites

Have administrator permissions for the IDaaS Enterprise Center platform.

# Steps

# Configuring a CAS Protocol Application

  1. Log in to the IDaaS Enterprise Center platform. In the top navigation bar, select "Resources > Applications," click "Add Self-built Application," set the application name, and save. Then, enter the application details page.

  2. On the Application Information page, enable "Authentication Integration," set it to CAS, and save.

  3. Click "Configure" next to "Authentication Integration" to enter the Authentication Integration details page and set the application callback address.

  4. Switch to the "Authorization Management > Application Accounts" page and add access accounts for the application.

  5. In the top navigation bar, select "Settings > Service Configuration," click "CAS Configuration" to obtain the relevant parameters.

    Supports setting the matching method for application addresses, i.e., the application address matching mode for CAS-type applications under Resources > Applications. After updating the application address matching method, all CAS applications need to modify their application addresses again.

    • Exact Match: The CAS service will match the application address of the CAS-type application based on the full path of the requested service parameter. This is the default mode.
    • Domain Match: The CAS service will match the application address of the CAS-type application based on the domain name of the requested service parameter. It is recommended to use the domain match mode when the CAS application address is not clear.

  6. Configure the obtained CAS interface information into your application.

# Development Integration

After completing the configuration on the IDaaS platform, please refer to the CAS Protocol to complete the subsequent integration configuration. Once configured, users can use single sign-on for this application from the User Center.

Configure OAuth Protocol Application SSO