skip to main content

TAMU Webmaster's Blog

Information and insight from the A&M Webmasters

New Feature on WWW

April 18th, 2008 by Erick Beck

Directory level authentication is now available via mod_cas for those who need to protect files on the server. Anyone currently using .htpassword as a means of authentication should consider switching to mod_cas. This allows users to log in via NetID and not have to remember arbitrary usernames/passwords set up for for a particular web directory.

The syntax is similar to any other form of Apache authentication. Simply create a .htaccess file in the directory that needs protecting and add the following lines:

AuthType CAS
AuthName "CAS"
require valid-user

Additional instructions, such as groups are also possible using standard .htaccess syntax. The one thing that you must remember is that calls to protected files/directories must explicitly be made over SSL connections; you cannot use an http:// link and expect it to redirecto to https://

I know several people have asked for this functionality, I hope we’ve finally met the need.

Friday, April 18th, 2008
Share this article

3 Comments to New Feature on WWW

  1. Do you have any plans to make mod_cas available to other Apache users on campus?

  2. Matthew on April 21st, 2008
  3. Matt,
    mod_cas is not proprietary code, you can go to and download the source to compile into any Apache server. A slightly more TAMU-centric copy can be found at http://www/CAS/libraries/mod_cas/ (but I’m not sure how old that one is.) That being said, some platforms are easier than others — we put it into SUSE linux a year ago with no trouble, it took six months to get the kinks out for Solaris 10.

  4. Erick on April 21st, 2008
  5. ouch. Ok, good to hear. I hadn’t ever messed with mod_cas.

  6. Matthew on April 21st, 2008

Leave a comment