This allows CAS to work side by side with other Auth methods.

This is at least one issue with this to logout of CAS you need session information but the logout method blows this away so I do the cas log out before the session is killed so the session persistest in rails. Because I needed to move the CAS before filters into login_cas and out of the application to make it work side by side. The user will still be logined into tracks even though their CAS session is closed as the session will still be there. def logout @user.forget_me if logged_in? cookies.delete :auth_token session['user_id'] = nil if ( SITE_CONFIG['authentication_schemes'].include? 'cas') && session[:cas_user] CASClient::Frameworks::Rails::Filter.logout(self) else reset_session notify :notice, "You have been logged out of Tracks." redirect_to_login end end The other issue I have with this is that: I could not find a use case for having mixed auth when using CAS. The reason to move to CAS is that all your users use CAS all the time. Even for admin accounts. Moodle is a good example of this in that when you activate CAS the default is that you can now only access moodle via CAS. By allowing mixed auth and self signup you end up with a anyone (the public) being able to sign up for accounts.
2025-12-16 23:30:12 +01:00 · 2009-12-29 12:22:44 -08:00 · 2009-12-29 12:22:44 -08:00 · 5b431ef50a
commit 5b431ef50a
parent d5c16db975
10 changed files with 113 additions and 56 deletions
--- a/app/controllers/application_controller.rb
+++ b/app/controllers/application_controller.rb
@ -29,19 +29,7 @@ class ApplicationController < ActionController::Base
  layout proc{ |controller| controller.mobile? ? "mobile" : "standard" }
  exempt_from_layout /\.js\.erb$/

-  if ( SITE_CONFIG['authentication_schemes'].include? 'cas')
-    # This will allow the user to view the index page without authentication
-    # but will process CAS authentication data if the user already
-    # has an SSO session open.
-    if (CASClient rescue nil)
-      # Only require sub-library if gem is installed and loaded
-      require 'casclient/frameworks/rails/filter'
-      before_filter CASClient::Frameworks::Rails::GatewayFilter, :only => :login
-
-      # This requires the user to be authenticated for viewing all other pages.
-      before_filter CASClient::Frameworks::Rails::Filter, :except => [:login , :calendar]
-    end
-  end
+  
  before_filter :set_session_expiration
  before_filter :set_time_zone
  before_filter :set_zindex_counter
@ -238,6 +226,14 @@ class ApplicationController < ActionController::Base
    self.class.cas_enabled?
  end

+  def self.prefered_auth?
+    Tracks::Config.prefered_auth?
+  end
+
+  def prefered_auth?
+    self.class.prefered_auth?
+  end
+
  private
        
  def parse_date_per_user_prefs( s )
@ -280,6 +276,8 @@ class ApplicationController < ActionController::Base
  
  def set_time_zone
    Time.zone = current_user.prefs.time_zone if logged_in?
+    locale = params[:locale] || 'en-US'
+    I18n.locale = locale
  end

  def set_zindex_counter