Introduction
The Career Centre is the new online Career platform for your University. The Career Center is a website where students can find information about companies and look for internship and job vacancies. To allow a targeted population to access the Career Center, JobTeaser supports multiple SSO integrations. Using an SSO integration means that it is your authentication server that authorizes the student to use JobTeaser.
Integration SSO CAS
Description
CAS is an enterprise Single Sign-On solution for web services. Single Sign-On (SSO) means a better user experience when running a multitude of web services, each with its own means of authentication. With a SSO solution, different web services may authenticate to one authoritative source of trust, that the user needs to log in to, instead of requiring the end-user to log in into each separate service.
+------------+ +------------+ +-----------+
| Service | | Student | | Auth |
| Provider | | | | Server |
+------------+ +------------+ +-----------+
| | |
|<-- request resource- --| |
|--- redirect to IDP --->| |
| | |
| |----- request IDP ---->|
| |<-- Get CAS ticket --|
| | |
|<-- send CAS ticket --| |
| | |
|------------ ask ticket validation ------------>|
|<----------- send user informations ------------|
| | |
Setup of your platform
We manage CAS from V2
Technical Environments
The following IP addresses have to be authorized to request your authentication server:
- Development: 84.14.204.224 to 84.14.204.239
- Production: 34.247.150.89, 52.48.69.13 and 34.242.136.182
- Pre Production: 34.248.34.73, 52.209.6.99 and 52.31.86.10
Si vous disposez d'un mécanisme de contrôle d'accès sur votre serveur CAS, nous avons besoin que vous autorisiez notre plateforme en permettant toutes les URL commençant par
- https://connect.jobteaser.com
JobTeaser Configuration
Requirements
- Url of the CAS Server
- Validation url of the CAS Server
- Test user account for end-to-end validation with the mandatory attributes.
User attributes
User attributes that can be included to the integration are:
-
last_name : mandatory - Last name /
String
-
first_name : mandatory - First name /
String
-
email : mandatory - adresse email /
String
Note: The uid attributes is a unique key that allows JobTeaser to identify the user. This attribute is included by CAS protocol, so it’s not necessary to add it to the user attributes.
The uid must have a persistent format and must not be an email.