CenterForOpenScience
diff --git a/‎CHANGELOG.md‎
Lines changed: 8 additions & 0 deletions b/‎CHANGELOG.md‎
Lines changed: 8 additions & 0 deletions
diff --git a/‎etc/cas/config/attribute-map-prod.xml‎
Lines changed: 1 addition & 1 deletion b/‎etc/cas/config/attribute-map-prod.xml‎
Lines changed: 1 addition & 1 deletion
diff --git a/‎etc/cas/config/attribute-map-test.xml‎
Lines changed: 1 addition & 1 deletion b/‎etc/cas/config/attribute-map-test.xml‎
Lines changed: 1 addition & 1 deletion
diff --git a/‎etc/cas/config/cas.properties‎
Lines changed: 12 additions & 0 deletions b/‎etc/cas/config/cas.properties‎
Lines changed: 12 additions & 0 deletions
diff --git a/‎etc/cas/config/instn-authn-prod.xsl‎
Lines changed: 1 addition & 1 deletion b/‎etc/cas/config/instn-authn-prod.xsl‎
Lines changed: 1 addition & 1 deletion
diff --git a/‎etc/cas/config/local/cas-local.properties‎
Lines changed: 11 additions & 0 deletions b/‎etc/cas/config/local/cas-local.properties‎
Lines changed: 11 additions & 0 deletions
diff --git a/‎etc/cas/config/shibboleth2-prod.xml‎
Lines changed: 7 additions & 1 deletion b/‎etc/cas/config/shibboleth2-prod.xml‎
Lines changed: 7 additions & 1 deletion
diff --git a/‎src/main/java/io/cos/cas/osf/configuration/model/DevModeProperties.java‎
Lines changed: 34 additions & 0 deletions b/‎src/main/java/io/cos/cas/osf/configuration/model/DevModeProperties.java‎
Lines changed: 34 additions & 0 deletions
diff --git a/‎src/main/java/io/cos/cas/osf/configuration/model/OsfUrlProperties.java‎
Lines changed: 30 additions & 0 deletions b/‎src/main/java/io/cos/cas/osf/configuration/model/OsfUrlProperties.java‎
Lines changed: 30 additions & 0 deletions
diff --git a/‎src/main/java/io/cos/cas/osf/web/config/OsfCasSupportActionsConfiguration.java‎
Lines changed: 1 addition & 0 deletions b/‎src/main/java/io/cos/cas/osf/web/config/OsfCasSupportActionsConfiguration.java‎
Lines changed: 1 addition & 0 deletions
@@ -2,6 +2,14 @@
 
 We follow the CalVer (https://calver.org/) versioning scheme: YY.MINOR.MICRO.
 
+
+25.1.0 (09-30-2025)
+===================
+
+* CAS FE rework for angular OSF release
+* Add dev-mode to reach pages directly bypassing required web/authn flow
+* SSO config sync
+
 25.0.0 (09-10-2025)
 ===================
 
 
@@ -150,7 +150,7 @@
     -->
 
     <!-- Active Directory Federation Services (ADFS 2.x) -->
-    <!-- University of Cape Town (UCT) and Boys Town (BT) -->
+    <Attribute name="http://schemas.xmlsoap.org/ws/2005/05/identity/claims/eppn" nameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" id="eppn" />
     <Attribute name="http://schemas.xmlsoap.org/ws/2005/05/identity/claims/emailaddress" nameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" id="mail" />
     <Attribute name="http://schemas.xmlsoap.org/ws/2005/05/identity/claims/name" nameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" id="displayName" />
     <Attribute name="http://schemas.microsoft.com/identity/claims/displayname" nameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" id="displayName" />
 
@@ -151,7 +151,7 @@
     -->
 
     <!-- Active Directory Federation Services (ADFS 2.x) -->
-    <!-- University of Cape Town (UCT), Boys Town (BT) and East Carolina University (ECU) -->
+    <Attribute name="http://schemas.xmlsoap.org/ws/2005/05/identity/claims/eppn" nameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" id="eppn" />
     <Attribute name="http://schemas.xmlsoap.org/ws/2005/05/identity/claims/emailaddress" nameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" id="mail" />
     <Attribute name="http://schemas.xmlsoap.org/ws/2005/05/identity/claims/name" nameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" id="displayName" />
     <Attribute name="http://schemas.xmlsoap.org/ws/2005/05/identity/claims/givenname" nameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" id="givenName" />
 
@@ -15,6 +15,12 @@ cas.server.prefix=${cas.server.name}
 # Tomcat Server
 #
 cas.server.tomcat.server-name=OSF CAS
+#
+# Dev Mode Options
+#
+cas.server.dev-mode.allow-force-authn-exception=${ALLOW_FORCE_AUTHN_EXCEPTION:false}
+cas.server.dev-mode.allow-force-http-error=${ALLOW_FORCE_HTTP_ERROR:false}
+#
 ########################################################################################################################
 
 ########################################################################################################################
@@ -90,6 +96,12 @@ cas.logout.remove-descendant-tickets=false
 #
 cas.authn.osf-url.home=https://{{ .Values.osfDomain }}/
 cas.authn.osf-url.dashboard=https://{{ .Values.osfDomain }}/dashboard/
+cas.authn.osf-url.search=https://{{ .Values.osfDomain }}/search/
+cas.authn.osf-url.support=https://help.osf.io
+cas.authn.osf-url.registries=https://{{ .Values.osfDomain }}/registries/discover/
+cas.authn.osf-url.preprints=https://{{ .Values.osfDomain }}/preprints/discover/
+cas.authn.osf-url.meetings=https://{{ .Values.osfDomain }}/meetings/
+cas.authn.osf-url.donate=https://www.cos.io/support-cos
 cas.authn.osf-url.login-with-next=https://{{ .Values.osfDomain }}/login?next=
 cas.authn.osf-url.logout=https://{{ .Values.osfDomain }}/logout/
 cas.authn.osf-url.resend-confirmation=https://{{ .Values.osfDomain }}/resend/
 
@@ -250,7 +250,7 @@
                         </user>
                     </xsl:when>
                     <!-- Harvard University (HARVARD) -->
-                    <xsl:when test="$idp='https://fed.huit.harvard.edu/idp/shibboleth'">
+                    <xsl:when test="$idp='http://www.okta.com/exk1xrjz6q65XDb2J1d8 '">
                         <id>harvard</id>
                         <user>
                             <username><xsl:value-of select="//attribute[@name='mail']/@value"/></username>
 
@@ -21,6 +21,11 @@ cas.server.tomcat.server-name=OSF CAS
 # cas.server.tomcat.http.enabled=true
 # cas.server.tomcat.http.attributes=
 # e.g. cas.server.tomcat.http.attributes.{attribute-name}={attributeValue}
+#
+# Dev Mode Options
+#
+cas.server.dev-mode.allow-force-authn-exception=true
+cas.server.dev-mode.allow-force-http-error=true
 ########################################################################################################################
 
 ########################################################################################################################
@@ -97,6 +102,12 @@ cas.logout.remove-descendant-tickets=false
 #
 cas.authn.osf-url.home=http://localhost:5000/
 cas.authn.osf-url.dashboard=http://localhost:5000/dashboard/
+cas.authn.osf-url.search=http://localhost:5000/search/
+cas.authn.osf-url.support=https://help.osf.io
+cas.authn.osf-url.registries=http://localhost:5000/registries/discover/
+cas.authn.osf-url.preprints=http://localhost:5000/preprints/discover/
+cas.authn.osf-url.meetings=http://localhost:5000/meetings/
+cas.authn.osf-url.donate=https://www.cos.io/support-cos
 cas.authn.osf-url.login-with-next=http://localhost:5000/login?next=
 cas.authn.osf-url.logout=http://localhost:5000/logout/
 cas.authn.osf-url.resend-confirmation=http://localhost:5000/resend/
 
@@ -55,6 +55,13 @@
             <MetadataFilter type="Signature" certificate="ecu-prod-idp-cert.cer" />
         </MetadataProvider>
 
+        <!-- Harvard University -->
+        <MetadataProvider type="XML"
+                          uri="https://login.harvard.edu/app/exk1xrjz6q65XDb2J1d8/sso/saml/metadata"
+                          backingFilePath="harvard-prod-idp-metadata.xml"
+                          reloadInterval="180000">
+        </MetadataProvider>
+
         <!-- Macquarie University (MQ) -->
         <MetadataProvider type="XML"
                           uri="https://mq.okta.com/app/exk2dzwun7KebsDIV2p7/sso/saml/metadata"
@@ -107,7 +114,6 @@
         <!-- George Mason University -->
         <!-- George Washington University -->
         <!-- Georgia Institute of Technology -->
-        <!-- Harvard University -->
         <!-- James Madison University -->
         <!-- KU Leuven -->
         <!-- Massachusetts Institute of Technology -->
 
@@ -0,0 +1,34 @@
+package io.cos.cas.osf.configuration.model;
+
+import lombok.Getter;
+import lombok.Setter;
+import lombok.experimental.Accessors;
+
+import java.io.Serializable;
+
+/**
+ * This is {@link DevModeProperties}.
+ *
+ * @author Longze Chen
+ * @since 25.1.0
+ */
+@Getter
+@Setter
+@Accessors(chain = true)
+public class DevModeProperties implements Serializable {
+
+    /**
+     * Serialization metadata.
+     */
+    private static final long serialVersionUID = -1725182183570276203L;
+
+    /**
+     * Allow CAS to force throw authentication exceptions and to render respective error pages for testing purpose.
+     */
+    private boolean allowForceAuthnException = Boolean.FALSE;
+
+    /**
+     * Allow CAS to force http errors which have built-in rendering template for rendering and testing.
+     */
+    private boolean allowForceHttpError = Boolean.FALSE;
+}
@@ -36,6 +36,36 @@ public class OsfUrlProperties implements Serializable {
      */
     private String dashboard;
 
+    /**
+     * OSF search page URL.
+     */
+    private String search;
+
+    /**
+     * OSF support page URL.
+     */
+    private String support;
+
+    /**
+     * OSF registries page URL.
+     */
+    private String registries;
+
+    /**
+     * OSF preprints page URL.
+     */
+    private String preprints;
+
+    /**
+     * OSF meetings page URL.
+     */
+    private String meetings;
+
+    /**
+     * OSF donate page URL.
+     */
+    private String donate;
+
     /**
      * OSF sign-up page URL.
      */
 
@@ -101,6 +101,7 @@ public Action osfNonInteractiveAuthenticationCheckAction() {
                 adaptiveAuthenticationPolicy.getObject(),
                 centralAuthenticationService.getObject(),
                 jpaOsfDao.getObject(),
+                casProperties.getServer().getDevMode(),
                 casProperties.getAuthn().getOsfUrl(),
                 casProperties.getAuthn().getOsfApi(),
                 authnDelegationClients