CAS

CAS (Central Authentication Service)

Introduction

The CAS protocol is a simple and powerful ticket-based protocol. It involves one or many clients and one server. Clients are embedded in CASified applications (called “CAS services”) whereas the CAS server is a standalone component.

The Cas protocol makes it possible to implement the SSO authentication method that allows users to access web applications with a single sign-on.

The specification versions recognized are 3.0.3 and 2.0

cas_max_logo_0.png


https://apereo.github.io/cas/6.5.x/protocol/CAS-Protocol.html

CAS architecture

Introduction

The CAS is a Single Sign On protocol for the web. This protocol allows users to access multiple applications by providing their credentials.

The response will be a JSON or XML 

Single Log-in

The single log-in is usually initiated by the application server. The typical UML use case is as follows:

image-1661327423181.png

Proxy web flow diagram

image-1661327695882.png


https://en.wikipedia.org/wiki/Central_Authentication_Service


CAS Example

Service Provider

image-1661408241083.png