fusionforge-plugin-authcas
--------------------------
-This is the external CAS authentication plugin for FusionForge.
+This is the external CAS authentication plugin for FusionForge. It is
+meant to be used in conjunction with the AuthLDAP plugin : CAS
+validates lognames (SSO perceived by the user) while LDAP retrieves
+her attributes.
+
+ATTENTION : if used with DB users (without LDAP), nothing guarantees
+that users logging in through CAS will be owners of the FusionForge
+accounts with the same login. This could leak to account hijacking.
Installation:
(which means you can't add someone to a group before his/her first
login).
- -- Roland Mas <lolando@debian.org>, Wed, 23 Feb 2011 15:01:24 +0100
+In case of trouble integrating with your CAS server, it is recommended
+to uncomment the phpCAS::setDebug() line in the plugin's
+post-login.php script, and check the phpCAS logs in /tmp.
+
+Don't forget to check that the example_simple.php shipped with your
+the phpCAS library works for your server with the corresponding
+settings (compare the post-login.php code with the one in
+simple_example.php, check the /tmp logs with setDebug on, etc.).
+
+ -- Olivier Berger <obergix@debian.org>, Fri, 15 Jun 2012 17:45:23 +0200
+
+External requirement:
+
+* phpCAS from https://wiki.jasig.org/display/CASC/phpCAS
+ Tested with 1.3.1
Local Variables:
mode: readme-debian