This document is a sample on how to resolve http://www.ja-sig.org/issues/browse/CAS-664.

Environment:

Server: Fedora 10 + CAS 3.3.1 + Tomcat 5.5.27 + OpenLDAP 2.4.12 + Cyrus SASL 2.1.22

Client: Fedora 10 + Firefox 3 (in the same computor with Server)

Realm: dell-d830

Config OpenLDAP DIGEST-MD5

...

uid=test,ou=beijing,o=langhua,c=cn

userPassword is 111111

Config SASL DIGEST-MD5

1. Add a user to SASL

...

Code Block

sasl2-sample-client \-m DIGEST-MD5 localhost

Console output:

receiving capability list... recv:
{53}
PLAIN CRAM-MD5 ANONYMOUS LOGIN NTLM GSSAPI DIGEST-MD5
PLAIN CRAM-MD5 ANONYMOUS LOGIN NTLM GSSAPI DIGEST-MD5
send:
{10}
DIGEST-MD5
send:
{1}
N
recv:
{114}
nonce="i7iU89Jmqj2S8BmExkXbkTwV8TaMdOrh1T803Q2UHw4=",realm="dell-d830",qop="auth",charset=utf-8,algorithm=md5-sess
please enter an authentication id:
please enter an authorization id: test
Password: 111111
send:
{231}
username="test",realm="dell-d830",nonce="i7iU89Jmqj2S8BmExkXbkTwV8TaMdOrh1T803Q2UHw4=",cnonce="h3prPJs4mCG0XAUJNiEhlISg0BjgS2UcRenpY6S3IuI=",nc=00000001,qop=auth,digest-uri="rcmd/localhost",response=e8f55dabc929152361c6cdcbb0d22532
recv:
{40}
rspauth=44285575e382f452e158665a2727a493
send:
{0}
successful authentication
closing connection

DIGEST-MD5 is ok.

Config CAS

1. Create /cas-server-support-ldap/src/main/java/org/jasig/cas/adaptors/ldap/BindLdapDigestMd5AuthenticationHandler.java

...

Versions Compared

Old Version 3

New Version 4

Key

Environment:

Config OpenLDAP DIGEST-MD5

Config SASL DIGEST-MD5

1. Add a user to SASL

Config CAS

1. Create /cas-server-support-ldap/src/main/java/org/jasig/cas/adaptors/ldap/BindLdapDigestMd5AuthenticationHandler.java

Page Comparison

Versions Compared

Old Version 3

New Version 4

Key

Environment:

Config OpenLDAP DIGEST-MD5

Config SASL DIGEST-MD5

1. Add a user to SASL

Config CAS

1. Create /cas-server-support-ldap/src/main/java/org/jasig/cas/adaptors/ldap/BindLdapDigestMd5AuthenticationHandler.java