Central Authentication Service (CAS)
Status: Graduated Incubation
Changes to Background and Objectives:
- Apereo membership fees for organizations that subscribe to the CAS project have increased. Given increased project activity and adoption, the project has opted for a more tiered structure to help sustain and improve development and support.
- CAS is also seeking additional funding from institutions who have deployed, used and benefited from project as free and open-source software also care about its long-term sustainability. Additional funding allows the CAS project to begin considering extra services and features for members; such as early notification of security announcements and details, modest yet dedicated support channels, LTS releases, certifications, etc.
New Technology/ies since last report:
Yubico open-source Java libraries, to be used to support FIDO2/WebAuthN features for passwordless authentication.
|Date of First Release||Date of Last Release||Number of Releases|
|February 4, 2019||December 29, 2019||29|
|Commits in 2019||Frequency of Commits|
|Number of Contributors in 2019|
|Number of sites in use (estimated)|
|10K+ (based on shodan.io)|
- Merge commits where excluded in the above statistics.
- Majority of contributors are first-time contributors to the project.
2019 CAS Highlights:
- Support for Okta and azure active directory authentication
- SAML2 identity provider discovery support
- Password history tracking/audits
- Redis authentication support
- Support for trusted devices w/ U2F/FIDO
- Multifactor provider UI selections
- Acceptto MFA integration
- JDK 12/13 binary compatibility
- Streamlined Dockerized deployments with jib
- Apache Cassandra support to manage service definitions
- Git support to manage service definitions
- Support for OpenID Connect Webfinger
- Enhancements to SAML2 Metadata Aggregates/InCommon
- OpenID Connect certifications
- Binary-compatibility with JDK 14 and above.
- Better support/documentation for Kubernetes
List and link to repositories and downloads: