Moodle plugins directory: CAS server (SSO) with user-attribute release: Versions: v3.7.1 | Moodle.org
CAS server (SSO) with user-attribute release
Charles Fulton, 
Adam FrancoCAS server (SSO) with user-attribute release v3.7.1
CAS server (SSO) with user-attribute release
This is an authentication plugin for Moodle that authenticates users via a Central Authentication Service (CAS) server and populates the Moodle user-account's attributes from user-attributes included in the CAS response.
This method does not make use of LDAP for user-attribute lookup, allowing its use in situations where there is no LDAP server that includes user information, or there are multiple LDAP servers that include user information.
This authentication method makes use of the attributes returned by the phpCAS library's phpCAS::getAttributes() function and which are often returned from modern CAS servers.
Requirements
- Moodle 3.7 (build 2019052000 or later)
- A CAS server that supports attribute-release via one of...
- The SAML 1.1 protocol
- The CAS 2.0 protocol with the serviceValidate JSP customized to include attributes
- [coming soon] The CAS 3.0 protocol
Installation
Download the source for this authentication module and place it in
moodle/auth/casattras/. This can be accomplished withcd /path/to/my/moodle/ git clone https://github.com/middlebury/Moodle-auth_casattras.git auth/casattrasLog into Moodle as a site adminstrator. You should be prompted to run a database update to install the plugin.
If you are going to configure SSL certificate validation of the CAS server (to prevent man-in-the-middle attacks on the login response) then save the certificate-authority certificate (CA-cert) to the filesystem where it is readable by Moodle and note its path.
Configuration
- Log into Moodle as a site administrator.
- If you don't already, make sure that you have a manual authentication-type admin account that you can log in with.
- Log in with the manual authentication-type admin account to ensure that you won't get locked out while changing around authentication settings.
- In Moodle, go to Site Administration -> Plugins -> Authentication -> Manage Authentication
- Edit the settings for CAS server (SSO) with user-attribute release to fit your CAS server.
- If configuring CAS server certificate validation, enter the CA-cert path for the "Certificate path" field.
- Edit the "Data Mapping" fields to match the user-attributes returned by your CAS server.
- Save the configuration.
- Disable the built-in CAS server (SSO) authentication type. This authentication plugin uses a newer version of phpCAS which would conflict with the built-in CAS server (SSO) authentication type, so both cannot be enabled at the same time.
- Enable the CAS server (SSO) with user-attribute release authentication type.
Migration
The following sample database query would migrate users from the cas authentication method to casattras:
UPDATE mdl_user SET auth='casattras' WHERE auth='cas';
Author
Charles Fulton (fultonc@lafayette.edu) Adam Franco
Version information
- Version build number
- 2020060900
- Version release name
- v3.7.1
- Can be updated from
- v3.7.0 (2020032600)
- Can be updated to
- v3.7.2 (2020071000), v4.1.0 (2022120600)
- Maturity
- Stable version
- MD5 Sum
- 57d3580d5b87193984a051805018c5eb
- Supported software
- Moodle 3.7, Moodle 3.8, Moodle 3.9
- The more recent release v3.7.2 (2020071000) exists for Moodle 3.7
- The more recent release v3.7.2 (2020071000) exists for Moodle 3.8
- The more recent release v3.9.0 (2020071001) exists for Moodle 3.9
Version control information
- Version control system (VCS)
- GIT
- VCS repository URL
- VCS branch
- master
- VCS tag
- v3.7.1
Default installation instructions for plugins of the type Authentication
- Make sure you have all the required versions.
- Download and unpack the module.
- Place the folder (eg "myauth") in the "auth" subdirectory.
- Visit http://yoursite.com/admin to finish the installation