Created: 2011-07-15 01:40
Updated: 2014-01-19 23:03
License: mit


So you want to authenticate with CASPORT in a Rails 3 app eh?

This simple site will show you how easy it is to use the oa-casport gem for CASPORT authentication.

Install the oa-casport Gem

First start by adding the following gem to your Gemfile:

gem 'oa-casport'

Then update your gems with Bundler:

$ bundle

Configure oa-casport and Initialize

Next you'll need to load oa-casport into your Rails application as a Rack middleware application via an initializer.

Rails.application.config.middleware.use OmniAuth::Builder do
  provider :casport, {
    :setup       => true,
    :cas_server  => 'http://cas.slkdemos.com/users/',
    :ssl_ca_file => '/path/to/your/server/Apache_bundle_file.crt',
    :pem_cert    => '/path/to/your/server/pem_certificate_file.pem'

Setup the OmniAuth Infrastructure

In order to use custom OmniAuth strategies (like oa-casport) you'll need to create a User model with at least two attributes provider and uid. You can add in any extra fields that the CASPORT server returns for users which you might want to store in your database as well. Here's an example using the Rails model generator along with all fields provided by the sample CASPORT server:

$ rails g model user provider:string uid:string email:string first_name:string last_name:string phone:string cell:string address:string address2:string city:string state:string country:string
$ rake db:migrate

After you've created your user model you'll need to create a sessions controller for OmniAuth routes:

$ rails g controller sessions

Lastly, we need to map some routes for OmniAuth:

match '/auth/:provider/setup', :to => 'sessions#setup'
match '/auth/:provider/callback', :to => 'sessions#create'
match '/signout' => 'sessions#destroy', :as => :signout

Configure Sessions for oa-casport

Next we need to create the sessions controller to handle user authentication via CASPORT.

class SessionsController < ApplicationController

  def setup
    # replace request.env['SSL_CLIENT_S_DN'] with your web server's user DN string from SSL
    request.env['omniauth.strategy'].options[:uid] = request.env['SSL_CLIENT_S_DN']
    render :text => 'Setup complete', :status => 404
  def create
    auth_hash = request.env['omniauth.auth']
    user = User.find_by_provider_and_uid(auth_hash['provider'], auth_hash['uid']) || User.create_with_omniauth(auth_hash)
    session[:user_id] = user.id
    redirect_to root_url, :notice => 'Thanks for logging in with CASPORT'
  def destroy
    session[:user_id] = nil
    redirect_to root_url, :notice => 'You have signed out'


Creating the User Model

Since we've received data back from CASPORT now it's time to store that data to our database. Add the following to the user model:

class User < ActiveRecord::Base
  attr_protected :id, :uid, :provider

  def self.create_with_omniauth(auth_hash)
    create! do |user|
      user.provider   = auth_hash['provider']
      user.uid        = auth_hash['uid']
      user.email      = auth_hash['user_info']['email']
      user.first_name = auth_hash['extra']['user_hash']['first_name']
      user.last_name  = auth_hash['extra']['user_hash']['last_name']
      user.phone      = auth_hash['extra']['user_hash']['phone']
      user.cell       = auth_hash['extra']['user_hash']['cell']
      user.address    = auth_hash['extra']['user_hash']['address']
      user.address2   = auth_hash['extra']['user_hash']['address2']
      user.city       = auth_hash['extra']['user_hash']['city']
      user.state      = auth_hash['extra']['user_hash']['state']
      user.country    = auth_hash['extra']['user_hash']['country']


Configure User Login

Now that you have the ability to get a user's details from CASPORT and have saved them to your database, let's setup a current_user like most Rails applications:

before_filter :current_user
helper_method :current_user

def current_user
  @current_user ||= User.find(session[:user_id]) if session[:user_id]
  #To force automatic login uncomment the following line:
  redirect_to '/auth/casport' unless @current_user or (params[:controller] == 'sessions' && params[:provider] == 'casport')
Cookies help us deliver our services. By using our services, you agree to our use of cookies Learn more