Skip to content
This repository has been archived by the owner on Apr 16, 2024. It is now read-only.

iforge-uos/flask-cas

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

6 Commits
.idea
.idea
 
 
Flask_CAS.egg-info
Flask_CAS.egg-info
 
 
flask_cas
flask_cas
 
 
PKG-INFO
PKG-INFO
 
 
README.md
README.md
 
 
setup.cfg
setup.cfg
 
 
setup.py
setup.py
 
 

Repository files navigation

Flask-CAS

Flask-CAS is a Flask extension which makes it easy to authenticate with a CAS Server (v2.0+).

Fork

This repository is forked for Docker compatibility

What is CAS?

The Central Authentication Service (CAS) is a single sign-on protocol for the web. Its purpose is to permit a user to access multiple applications while providing their credentials (such as userid and password) only once. It also allows web applications to authenticate users without gaining access to a user's security credentials, such as a password. The name CAS also refers to a software package that implements this protocol.

http://jasig.github.io/cas

Installation

Pip

You can install with pip.

pip install git+https://github.com/iforge-uos/flask-cas.git@master#egg=Flask-CAS

Instructions

After Flask-CAS is installed you will be able to import the flask_cas packages. There is only one thing you care about inside the package which is the CAS class.

from flask_cas import CAS

There are two ways to use the CAS class.

  1. Add the application object at construction time
app = Flask(__name__)
CAS(app)
  1. Or initialize the application with CAS.init_app
cas = CAS()
app = Flask(__name__)
cas.init_app(app)

The CAS class will add two routes /login/ and /logout/. You can prefix these routes if you pass a second argument to the CAS constructor or init_app depending on the method you choose.

The /login/ route will redirect the user to the CAS specified by the CAS_SERVER configuration value. If login is successful the user will be redirect to the endpoint specified by the CAS_AFTER_LOGIN configuration value, and the logged in user's username will be store in the session under the key specified by the CAS_USERNAME_SESSION_KEY configuration value. If attributes are available, they will be stored in the session under the key specified by the CAS_ATTRIBUTES_SESSION_KEY

The /logout/ route will redirect the user to the CAS logout page and the username and attributes will be removed from the session.

For convenience you can use the cas.login and cas.logout functions to redirect users to the login and logout pages.

from flask_cas import login
from flask_cas import logout

If you would like to require that a user is logged in before continuing you may use the cas.login_required method.

from flask_cas import login_required

app.route('/foo')
@login_required
def foo():
    pass

Configuration

Required Configs

Key Description Example
CAS_SERVER URL of CAS 'http://sso.pdx.edu'
CAS_VALIDATE_SERVER URL of CAS Validation Server 'http://sso.pdx.edu'
CAS_AFTER_LOGIN Endpoint to go to after successful login 'root'

Optional Configs

Key Default
CAS_TOKEN_SESSION_KEY _CAS_TOKEN
CAS_USERNAME_SESSION_KEY CAS_USERNAME
CAS_ATTRIBUTES_SESSION_KEY CAS_ATTRIBUTES
CAS_LOGIN_ROUTE '/cas'
CAS_LOGOUT_ROUTE '/cas/logout'
CAS_VALIDATE_ROUTE '/cas/serviceValidate'
CAS_AFTER_LOGOUT None

Example

import flask
from flask import Flask
from flask_cas import CAS
from flask_cas import login_required

app = Flask(__name__)
cas = CAS(app, '/cas')
app.config['CAS_SERVER'] = 'https://sso.pdx.edu' 
app.config['CAS_AFTER_LOGIN'] = 'route_root'

@app.route('/')
@login_required
def route_root():
    return flask.render_template(
        'layout.html',
        username = cas.username,
        display_name = cas.attributes['cas:displayName']
    )

About

No description, website, or topics provided.

Resources

Readme
Activity
Custom properties

Stars

1 star

Watchers

2 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages