Description: Plugin to integrate WordPress or WordPressMU with existing CAS single sign-on architectures and LDAP for grabbing user information.
wpCAS-w-LDAP allows you to use your own CAS architecture to authenticate users in your WordPress blog. It also allows you to configure an LDAP connection to get user information for user not already members of your WordPress installation.
The Central Authentication Service (CAS) is a single sign-on protocol for the web. Its purpose is to permit a user to log into multiple applications simultaneously and automatically. It also allows untrusted web applications to authenticate users without gaining access to a user's security credentials, such as a password. The name CAS also refers to a software package that implements this protocol.
Users who attempt to login to WordPress are redirected to the central CAS sign-on screen. After the user's credentials are verified, s/he is then redirected back to the WordPress site. If the CAS username matches the WordPress username, the user is recognized as valid and allowed access.
Authorization of that user's capabilities is based on native WordPress settings and functions. CAS only authenticates that the user is who s/he claims to be.
If the CAS user does not have an account in the WordPress site, depending on the plugin's settings, the user is either 1. Denied access or 1. Added to the user database with the default role set on the plugin's options page.
LDAP is included as an option for getting user information when they are being added to the database. If LDAP is available on your installation of PHP, you will be given the option of configuring it for this purpose.
The Lightweight Directory Access Protocol, or LDAP, is an application protocol for querying and modifying directory services running over TCP/IP.