feat(3p/apereo-cas): add TVL-specific configuration to overlay

Change-Id: I5193cb7695d37c1770257741e600d7029b6596a0 Reviewed-on: https://cl.tvl.fyi/c/depot/+/934 Reviewed-by: tazjin <mail@tazj.in> Tested-by: BuildkiteCI
2020-07-05 19:09:53 +00:00 · 2020-07-05 19:09:53 +00:00 · 310302637b
commit 310302637b
parent 4dca44ac72
4 changed files with 37 additions and 6 deletions
--- a/third_party/apereo-cas/overlay/etc/cas/config/cas.properties
+++ b/third_party/apereo-cas/overlay/etc/cas/config/cas.properties
@ -1,6 +1,26 @@
-cas.server.name=https://cas.example.org:8443
-cas.server.prefix=${cas.server.name}/cas
+cas.server.name=https://login.tvl.fyi
+cas.server.prefix=${cas.server.name}
+cas.server.scope=tvl.fyi

-logging.config=file:/etc/cas/config/log4j2.xml
+cas.service-registry.json.location=file:/etc/cas/services
+
+server.port=8443
+server.address=127.0.0.1
+server.ssl.enabled=false
+
+cas.authn.saml-idp.entity-id=https://login.tvl.fyi
+
+cas.authn.accept.users=
+
+cas.authn.attribute-repository.default-attributes-to-release=uid,mail,displayName
+
+cas.authn.ldap[0].pool-passivator=NONE
+cas.authn.ldap[0].principal-attribute-list=cn:uid,mail,displayName
+cas.authn.ldap[0].ldap-url=ldap://localhost
+cas.authn.ldap[0].use-start-tls=false
+cas.authn.ldap[0].validator.base-dn=dc=tvl,dc=fyi
+cas.authn.ldap[0].base-dn=dc=tvl,dc=fyi
+cas.authn.ldap[0].search-filter=cn={user}
+cas.authn.ldap[0].dn-format=cn=%s,ou=users,dc=tvl,dc=fyi
+cas.authn.ldap[0].type=DIRECT

-# cas.authn.accept.users=
--- a/third_party/apereo-cas/overlay/etc/cas/services/samltest-1.json
+++ b/third_party/apereo-cas/overlay/etc/cas/services/samltest-1.json
@ -0,0 +1,8 @@
+{
+  "@class" : "org.apereo.cas.support.saml.services.SamlRegisteredService",
+  "serviceId" : "https://samltest.id/saml/sp",
+  "name" : "SAMLTest SP",
+  "id" : 1,
+  "evaluationOrder" : 10,
+  "metadataLocation" : "https://samltest.id/saml/sp"
+}