tessl/maven-org-apereo-cas--cas-server-core-multitenancy
Apereo CAS Core Multitenancy library providing tenant management capabilities for Central Authentication Service
- Workspace
- tessl
- Visibility
- Public
- Created
- Last updated
'%3e%3cpath%20d='m7.15%205.779.281.877c-.001.502.003.991.124%201.48l.116-.082.229-1.265c.723%201.422%202.78%203.325%202.53%205.008-.022.154-.082.3-.158.435.349-.014.375-.38.578-.56.187%201.005.17%201.975-.22%202.932l1.428%203.159c-.007.07-.626.285-.744.226-.087-.044-.629-1.506-.742-1.754-.103-.224-.457-1.044-.592-1.165-.592-.534-2.033-.183-2.773-.256l.488-.115.148-.109c-.68-.08-1.363-.34-1.85-.815.531.046%201.052.121%201.592.087.1-.006.378-.02.432-.114-1.338-.016-2.398-.569-3.16-1.62-1.03-1.422-1.646-3.215-2.658-4.662-.203-.289-.474-.68-.776-.847-.015-.092.076-.054.137-.049.375.034.778.157%201.148.234l1.26.462c-.404-.737-1.332-.637-1.984-.994-.759-.416-1.2-1.386-1.487-2.149-.258-.68-.536-1.495-.492-2.217.282.262.529.573.896.73.087-.102-.838-1.102-.867-1.323C-.051.673.656-.051%201.328.003c1.128.09%202.44%201.953%202.87%202.886.074.069.145-.23.149-.25.029-.154.01-.306.054-.452.67.932%201.64%201.722%202.122%202.768l.626%201.778V5.78Z'/%3e%3cpath%20d='m10.851%206.733.626-1.778c.483-1.047%201.451-1.836%202.122-2.769.045.147.025.299.054.452.005.021.075.32.149.25.43-.932%201.742-2.796%202.87-2.885.672-.054%201.38.67%201.294%201.31-.03.22-.954%201.221-.867%201.322.367-.156.614-.467.896-.729.044.722-.234%201.536-.49%202.218-.288.763-.73%201.733-1.488%202.149-.652.356-1.58.256-1.984.993l1.26-.461c.37-.077.772-.2%201.148-.234.06-.006.152-.044.136.049-.301.166-.573.557-.775.847-.794%201.135-1.347%202.488-2.049%203.68-.635%201.081-1.285%202.087-2.613%202.432.148-.768.005-1.562-.173-2.316l-.32-.092c-.219-1.088-.84-2.001-1.466-2.908l.919-1.475.229%201.265.116.082c.12-.489.125-.979.123-1.48l.283-.877v.955ZM8.017%2014.984c-.238.57-.531%201.119-.78%201.686-.089.204-.446%201.24-.518%201.295-.145.114-.622-.087-.777-.2l1.207-2.78h.868ZM12.008%2013.75c-.059.174-.949.7-1.04.617l.12-.5.92-.117Z'/%3e%3c/g%3e%3cdefs%3e%3cclipPath%20id='a'%3e%3cpath%20fill='%23fff'%20d='M0%200h18v18H0z'/%3e%3c/clipPath%3e%3c/defs%3e%3c/svg%3e){kind=small}
To install, run
npx @tessl/cli install tessl/maven-org-apereo-cas--cas-server-core-multitenancy@7.2.0index.mddocs/
CAS Server Core Multitenancy
CAS Server Core Multitenancy is a Java library that provides comprehensive tenant management capabilities for the Central Authentication Service (CAS). It enables multi-tenant authentication deployments where different organizations or environments can coexist within a single CAS infrastructure while maintaining complete isolation and customization capabilities for each tenant.
Package Information
- Package Name: cas-server-core-multitenancy
- Package Type: maven
- Language: Java
- Version: 7.2.4
- Group ID: org.apereo.cas
- Installation: Add dependency to your Maven/Gradle build file
Maven:
<dependency>
<groupId>org.apereo.cas</groupId>
<artifactId>cas-server-core-multitenancy</artifactId>
<version>7.2.4</version>
</dependency>Gradle:
implementation 'org.apereo.cas:cas-server-core-multitenancy:7.2.4'Core Imports
import org.apereo.cas.multitenancy.TenantsManager;
import org.apereo.cas.multitenancy.TenantExtractor;
import org.apereo.cas.multitenancy.TenantDefinition;
import org.apereo.cas.multitenancy.DefaultTenantsManager;
import org.apereo.cas.multitenancy.DefaultTenantExtractor;Basic Usage
import org.apereo.cas.multitenancy.*;
import org.apereo.cas.configuration.CasConfigurationProperties;
import org.springframework.core.io.ClassPathResource;
import org.springframework.core.io.Resource;
import java.util.Optional;
// Create a tenants manager with JSON configuration
Resource tenantsConfig = new ClassPathResource("tenants.json");
TenantsManager tenantsManager = new DefaultTenantsManager(tenantsConfig);
// Find a specific tenant
Optional<TenantDefinition> tenant = tenantsManager.findTenant("tenant1");
if (tenant.isPresent()) {
TenantDefinition tenantDef = tenant.get();
System.out.println("Tenant: " + tenantDef.getId());
System.out.println("Description: " + tenantDef.getDescription());
}
// Extract tenant from request path (requires CAS configuration)
CasConfigurationProperties casProperties = new CasConfigurationProperties();
TenantExtractor extractor = new DefaultTenantExtractor(tenantsManager, casProperties);
Optional<TenantDefinition> extractedTenant = extractor.extract("/tenants/tenant1/login");Architecture
The CAS multitenancy module is built around several key components:
- Tenant Management: Central repository for tenant definitions with JSON-based configuration and dynamic reloading
- Tenant Extraction: URL pattern matching to identify tenant context from incoming requests
- Policy Framework: Separate, configurable policies for authentication, communication, delegation, and multifactor authentication per tenant
- Spring Integration: Full Spring Boot auto-configuration with proper bean lifecycle management
- Configuration Watching: File system monitoring for dynamic tenant configuration updates
Capabilities
Tenant Management
Core functionality for managing tenant definitions, including loading from JSON configuration files and providing lookup capabilities.
public interface TenantsManager {
Optional<TenantDefinition> findTenant(String tenantId);
List<TenantDefinition> findTenants();
}
public class DefaultTenantsManager implements TenantsManager, DisposableBean {
public DefaultTenantsManager();
public DefaultTenantsManager(Resource resource);
}Tenant Extraction
System for extracting tenant context from HTTP requests using configurable URL patterns and request processing.
public interface TenantExtractor {
TenantsManager getTenantsManager();
Optional<TenantDefinition> extract(HttpServletRequest request);
Optional<TenantDefinition> extract(RequestContext requestContext);
Optional<TenantDefinition> extract(String requestPath);
static String tenantIdFromPath(String requestPath);
}
public class DefaultTenantExtractor implements TenantExtractor {
public DefaultTenantExtractor(TenantsManager tenantsManager, CasConfigurationProperties casProperties);
}Tenant Definition and Policies
Complete tenant configuration model with separate policy objects for different aspects of authentication and communication.
public class TenantDefinition implements Serializable {
private String id;
private String description;
private TenantAuthenticationPolicy authenticationPolicy;
private TenantCommunicationPolicy communicationPolicy;
private TenantDelegatedAuthenticationPolicy delegatedAuthenticationPolicy;
private TenantMultifactorAuthenticationPolicy multifactorAuthenticationPolicy;
public String getId();
public void setId(String id);
public String getDescription();
public void setDescription(String description);
public TenantAuthenticationPolicy getAuthenticationPolicy();
public void setAuthenticationPolicy(TenantAuthenticationPolicy authenticationPolicy);
public TenantCommunicationPolicy getCommunicationPolicy();
public void setCommunicationPolicy(TenantCommunicationPolicy communicationPolicy);
public TenantDelegatedAuthenticationPolicy getDelegatedAuthenticationPolicy();
public void setDelegatedAuthenticationPolicy(TenantDelegatedAuthenticationPolicy delegatedAuthenticationPolicy);
public TenantMultifactorAuthenticationPolicy getMultifactorAuthenticationPolicy();
public void setMultifactorAuthenticationPolicy(TenantMultifactorAuthenticationPolicy multifactorAuthenticationPolicy);
}Spring Configuration
Auto-configuration classes and beans for seamless Spring Boot integration with proper conditional configuration.
@AutoConfiguration
@EnableConfigurationProperties(CasConfigurationProperties.class)
@ConditionalOnFeatureEnabled(feature = CasFeatureModule.FeatureCatalog.Multitenancy)
public class CasCoreMultitenancyAutoConfiguration {
@Bean
@RefreshScope(proxyMode = ScopedProxyMode.DEFAULT)
@ConditionalOnMissingBean(name = TenantsManager.BEAN_NAME)
public TenantsManager tenantsManager(CasConfigurationProperties casProperties) throws Exception;
@Bean
@RefreshScope(proxyMode = ScopedProxyMode.DEFAULT)
@ConditionalOnMissingBean(name = TenantExtractor.BEAN_NAME)
public TenantExtractor tenantExtractor(CasConfigurationProperties casProperties,
@Qualifier(TenantsManager.BEAN_NAME) TenantsManager tenantsManager);
@Bean
@ConditionalOnMissingBean(name = "casMultitenancyEndpointConfigurer")
@RefreshScope(proxyMode = ScopedProxyMode.DEFAULT)
public CasWebSecurityConfigurer<HttpSecurity> casMultitenancyEndpointConfigurer();
}Common Types
Core Constants
public interface TenantsManager {
String BEAN_NAME = "tenantsManager";
}
public interface TenantExtractor {
String BEAN_NAME = "tenantExtractor";
Pattern PATTERN_TENANTS = Pattern.compile("tenants/(.+)/(.+)", Pattern.CASE_INSENSITIVE);
}Exception Types
public class UnknownTenantException extends RuntimeException {
public UnknownTenantException(String message);
}