Jan Peter Alexander

There is nothing certain than the uncertainty itself. Capture, learn and mitigate. Welcome!

Conventions

export REDIS_PASSWORD=`pwgen 32 1`
export REDIS_SERVER=192.0.2.10
export CAS_SRC_DIR=`pwd` # somewhere

Yes, I assume we are on root directory of our CAS Gradle overlay.

Setup Redis Server

sudo apt install redis-server

Disable bind to localhost only: (default Debian Stretch install)

sudo sed -i 's/^bind/#bind/'

Add Redis access password:

echo "requirepass $REDIS_PASSWORD" | sudo tee -a /etc/redis/redis.conf

Restart Redis:

sudo /etc/init.d/redis-server restart

Setup CAS Dependency

Add to cas’ build.gradle CAS Redis dependency.

compile "org.apereo.cas:cas-server-support-redis-ticket-registry:${project.'cas.version'}"

So, file becomes $CAS_SRC_DIR/cas/build.gradle:

// ...
dependencies {
    compile "org.apereo.cas:cas-server-webapp-jetty:${project.'cas.version'}@war"
    compile "org.apereo.cas:cas-server-support-redis-ticket-registry:${project.'cas.version'}"
    if (!project.hasProperty('bootiful')) {
        // Other dependencies may be listed here...
    } else {
        println "Running CAS in Bootiful mode; all dependencies except the CAS web application are ignored."
    }
}
// ...

Rebuild CAS:

./build clean build

Setup CAS configuration

Append to CAS configuration:

cat >> etc/cas/config/cas.properties << EOF
# Ticket granting
cas.tgc.crypto.encryption.key=wSQUZVGqXGzJJZYa89654xIf_U8mSughk8f9tlo6Zts
cas.tgc.crypto.signing.key=GmARoc8Ej2WnAhjAUadaNhjCKpif60M8MqfL-q4IymQo1KyutBulZGi_FB3ZZHieTi27ButDEtBB8wFxfvuGLA

# REDIS Ticket
cas.ticket.registry.redis.host=$REDIS_SERVER
cas.ticket.registry.redis.database=0
cas.ticket.registry.redis.port=6379
cas.ticket.registry.redis.password=$REDIS_PASSWORD

EOF

Move to CAS configuration directory:

./build copy

You could restart CAS, but CAS have an ability to read configuration change on-the-fly.

Run CAS if it isn’t run:

./build run

Or

java -jar cas/build/libs/cas.war

Test

If doing it right

redis-cli
127.0.0.1:6379> AUTH nee8oohiNg3WiWoetapha3iwae9giej3
OK
127.0.0.1:6379> CLIENT LIST
id=86 addr=192.0.2.11:52512 fd=6 name= age=56 idle=29 flags=N db=0 sub=0 psub=0 multi=-1 qbuf=0 qbuf-free=0 obl=0 oll=0 omem=0 events=r cmd=ping
id=87 addr=127.0.0.1:56782 fd=7 name= age=5 idle=0 flags=N db=0 sub=0 psub=0 multi=-1 qbuf=0 qbuf-free=32768 obl=0 oll=0 omem=0 events=r cmd=client

Reference

Redis Ticket Registry CAS Properties: Redis Ticket Registry

You May Also Enjoy