<div dir="ltr"><div class="gmail_default" style="font-family: comic\ sans\ ms, sans-serif;">Ah...a simple resolution: In ood_portal.yml, the 'servername' field requires specifying a public IP, which I had inadvertently not supplied.<br><br></div><div class="gmail_default" style="font-family: comic\ sans\ ms, sans-serif;">So for our site, authentication using CAS is working, and it seems reasonably straightforward to configure. If anyone can review what I've done, I'm open to receiving critiques:<br><br></div><div class="gmail_default" style="font-family: comic\ sans\ ms, sans-serif;">ood_portal.yml<br></div><div class="gmail_default" style="font-family: comic\ sans\ ms, sans-serif;">servername: [public-ip-name]<br><br>auth:<br> - 'AuthType CAS'<br> - 'AuthName "Private"'<br> - 'RequestHeader unset Authorization'<br> - 'Require valid-user'<br><br></div><div class="gmail_default" style="font-family: comic\ sans\ ms, sans-serif;">/opt/rh/httpd24/root/etc/httpd/conf.d/cas.conf<br>LoadModule auth_cas_module /opt/rh/httpd24/root/etc/httpd/modules/mod_auth_cas.so<br>CASLoginURL [local-login-url]<br>CASValidateURL [local-validate-url]<br>CASCertificatePath /opt/rh/httpd24/root/etc/httpd/cas-cert/ca-certificate.crt<br>CASDebug On<br>CASCookiePath /opt/rh/httpd24/root/etc/httpd/run/cookie/<br><br></div><div class="gmail_default" style="font-family: comic\ sans\ ms, sans-serif;">Cheers<br></div><div class="gmail_default" style="font-family: comic\ sans\ ms, sans-serif;">~ Em<br></div></div><div class="gmail_extra"><br><div class="gmail_quote">On Mon, Aug 20, 2018 at 10:27 AM, E.M. Dragowsky <span dir="ltr"><<a href="mailto:dragowsky@case.edu" target="_blank">dragowsky@case.edu</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"><div dir="ltr"><div class="gmail_default">In reviewing the differences between ood-portal.conf in the successful test case, and the 'standard' configuration, the meaningful differences are few:<br><br>< <VirtualHost [host-public-ip]:80><br>---<br>> <VirtualHost *:80><br>87c87<br>< AuthType CAS<br>---<br>> AuthType Basic<br>89c89<br>< #AuthUserFile "/opt/rh/httpd24/root/etc/<wbr>httpd/.htpasswd"<br>---<br>> AuthUserFile "/opt/rh/httpd24/root/etc/<wbr>httpd/.htpasswd"<br><br></div><div class="gmail_default">Only setting the VIrtualHost through ood_config.yml is unclear -- the other two values are somewhat documented in the code. I tried to set the public IP using the 'servername' keyword, and then also 'virtualhost', and in both cases the result was 'VIrtualHost *:80'<br> <br></div><div class="gmail_default">Thanks<br></div></div><div class="HOEnZb"><div class="h5"><div class="gmail_extra"><br><div class="gmail_quote">On Fri, Aug 17, 2018 at 4:45 PM, E.M. Dragowsky <span dir="ltr"><<a href="mailto:dragowsky@case.edu" target="_blank">dragowsky@case.edu</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"><div dir="ltr"><div class="gmail_default">Greetings --<br><br></div><div class="gmail_default">Is anyone able to provide guidance on editing ood_portal.yml to support CAS authentication? I tried a few ideas that did not work, based on our implementation test outlined below -- which provided a successful test.<br><br></div><div class="gmail_default">Thanks in advance<br><br></div><div class="gmail_default">=-=-=-=-=<br>We have implemented CAS through a download and build of mod_auth_cas from this repo: <a href="https://github.com/apereo/mod_auth_cas" target="_blank">https://github.com/apereo/mod_<wbr>auth_cas</a>. The service was configured in the system, and then we made ad-hoc edits to the existing ood configuration in /opt/rh/httpd24/root/etc/httpd<wbr>/conf.d to verify that the service would recognize OoD.<br><br></div><div class="gmail_default">This was realized through direct edit of the ood-portal.conf, and by creating a cas.conf file in /opt/rh/httpd24/root/etc/httpd<wbr>/conf.d<span class="m_3299963118336498496HOEnZb"><font color="#888888"><br><br></font></span></div><span class="m_3299963118336498496HOEnZb"><font color="#888888"><br><div class="gmail_default"><br></div><div class="gmail_default"><br></div><br><br><br>-- <br><div class="m_3299963118336498496m_-5016245241747241987gmail_signature"><div dir="ltr"><div><div dir="ltr"><div dir="ltr"><div dir="ltr"><div dir="ltr"><div dir="ltr"><div dir="ltr"><div dir="ltr"><div dir="ltr"><div dir="ltr"><div dir="ltr"><div dir="ltr"><div><span style="font-family:"comic sans ms",sans-serif;font-size:small">E.M. Dragowsky, Ph.D.</span><br></div><div><font face="comic sans ms, sans-serif" size="2">Research Computing -- UTech</font></div><div><font face="comic sans ms, sans-serif" size="2">Case Western Reserve University<br></font></div><div><font face="comic sans ms, sans-serif" size="2">(216) 368-0082</font></div></div></div></div></div></div></div></div></div></div></div></div></div></div></div>
</font></span></div>
</blockquote></div><br><br clear="all"><br>-- <br><div class="m_3299963118336498496gmail_signature" data-smartmail="gmail_signature"><div dir="ltr"><div><div dir="ltr"><div dir="ltr"><div dir="ltr"><div dir="ltr"><div dir="ltr"><div dir="ltr"><div dir="ltr"><div dir="ltr"><div dir="ltr"><div dir="ltr"><div dir="ltr"><div><span style="font-family:"comic sans ms",sans-serif;font-size:small">E.M. Dragowsky, Ph.D.</span><br></div><div><font face="comic sans ms, sans-serif" size="2">Research Computing -- UTech</font></div><div><font face="comic sans ms, sans-serif" size="2">Case Western Reserve University<br></font></div><div><font face="comic sans ms, sans-serif" size="2">(216) 368-0082</font></div></div></div></div></div></div></div></div></div></div></div></div></div></div></div>
</div>
</div></div></blockquote></div><br><br clear="all"><br>-- <br><div class="gmail_signature" data-smartmail="gmail_signature"><div dir="ltr"><div><div dir="ltr"><div dir="ltr"><div dir="ltr"><div dir="ltr"><div dir="ltr"><div dir="ltr"><div dir="ltr"><div dir="ltr"><div dir="ltr"><div dir="ltr"><div dir="ltr"><div><span style="font-family:"comic sans ms",sans-serif;font-size:small">E.M. Dragowsky, Ph.D.</span><br></div><div><font size="2" face="comic sans ms, sans-serif">Research Computing -- UTech</font></div><div><font size="2" face="comic sans ms, sans-serif">Case Western Reserve University<br></font></div><div><font size="2" face="comic sans ms, sans-serif">(216) 368-0082</font></div></div></div></div></div></div></div></div></div></div></div></div></div></div></div>
</div>