| Warning | ||
|---|---|---|
| ||
CAS documentation has moved over to apereo.github.io/cas, starting with CAS version 4.x. The wiki will no longer be maintained. For the most recent version of the documentation, please refer to the aforementioned link. |
| Warning | ||
|---|---|---|
| ||
Before CAS server 4.0.0, the services management webapp is part of the CAS server and can be accessed through an url like : https://localhost:8443/cas/services/. With the new major version 4.0.0 of CAS, the services management webapp is in a more general and separate webapp in dedicated to CAS management : the cas-management-webapp module, which can be accessed through an url like : https://localhost:8443/management/. |
| Warning | ||
|---|---|---|
| ||
When defining a service, there is an option called allowedToProxy which allows a CAS service to play the role of a CAS proxy. Before CAS 4.0, this option was enabled by default. However, as the proxy mechanism is extremely powerful and in order to improve security on the CAS server, this option is now disabled by default (on CAS 4.0). Please read : CAS Threat Modeling and Proposals to mitigate security risks for a better understanding of what the CAS security group is trying to achieve in terms of security. |
What is Services Management?
...