We read every piece of feedback, and take your input very seriously.
To see all available qualifiers, see our documentation.
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
require cas-attribute won't work for rewrite url
e.g.,
.htaccess
RewriteEngine On RewriteCond %{REQUEST_FILENAME} !-f RewriteCond %{REQUEST_FILENAME} !-d RewriteRule ^ index.php [QSA,L]
It rewrite everything to index.php. If the directory is protected by require cas-attribute, Apache will deny the access.
The workaround is using SAMLValidate instead.
Following patch could help even not using SAMLValidate:
diff --git a/src/mod_auth_cas.c b/src/mod_auth_cas.c index a3c5561..48bd846 100644 --- a/src/mod_auth_cas.c +++ b/src/mod_auth_cas.c @@ -2305,6 +2305,10 @@ int cas_authenticate(request_rec *r) return HTTP_MOVED_TEMPORARILY; } + if(!isValidCASCookie(r, c, cookieString, &remoteUser, &attrs)) { + remoteUser = NULL; + } + if (c->CASDebug) ap_log_rerror(APLOG_MARK, APLOG_DEBUG, 0, r, "recycling user '%s' from initial request for sub request", remoteUser); } else if(!isValidCASCookie(r, c, cookieString, &remoteUser, &attrs)) {
The text was updated successfully, but these errors were encountered:
No branches or pull requests
require cas-attribute won't work for rewrite url
e.g.,
.htaccess
RewriteEngine On
RewriteCond %{REQUEST_FILENAME} !-f
RewriteCond %{REQUEST_FILENAME} !-d
RewriteRule ^ index.php [QSA,L]
It rewrite everything to index.php. If the directory is protected by require cas-attribute, Apache will deny the access.
The workaround is using SAMLValidate instead.
Following patch could help even not using SAMLValidate:
The text was updated successfully, but these errors were encountered: