Community Documentation

Restricting allowed users

Last updated March 7, 2011. Created by bfroehle on March 7, 2011.
Log in to edit this page.

You can limit the list of users allowed to log in with CAS by creating a custom module. The basic template for the module is provided below. Note that the CAS API changed from 6.x-2.x to 6.x-3.x/7.x-1.x.

CAS 6.x-2.x

Create a module which implements hook_auth_filter().

<?php
/**
* Implements hook_auth_filter().
*
* Limit logins to a list of specified users.
*/
function MODULE_auth_filter($module, $cas_name) {
  if ($module != 'cas') {
    // Do not filter non-CAS users.
    return TRUE;
  }

  $allowed_users = array(
    'netid1',
    'netid2',
    'netid3',
  );

  return in_array($cas_name, $allowed_users);
}
?>

CAS 6.x-3.x or 7.x-1.x

Create a module which implements hook_cas_user_alter(). See the provided cas.api.php for more information. Sample code is provided below:

<?php
/**
* Implements hook_cas_user_alter().
*
* Limit logins to a list of specified users.
*/
function MODULE_cas_user_alter(&$cas_user) {
  // Extract the CAS username.
  $cas_name = $cas_user['name'];

  $allowed_users = array(
    'netid1',
    'netid2',
    'netid3',
  );

  if (!in_array($cas_name, $allowed_users)) {
    // If the user is not in the specified list of allowed users,
    // we do not allow the user to log in.
    $cas_user['login'] = FALSE;
  }
}
?>
Login or register to post comments

Looking for support? Visit the Drupal.org forums, or join #drupal-support in IRC.

Page status

No known problems

Log in to edit this page

About this page

Drupal version
Drupal 6.x, Drupal 7.x
Audience
Programmers
Drupal’s online documentation is © 2000-2013 by the individual contributors and can be used in accordance with the Creative Commons License, Attribution-ShareAlike 2.0. PHP code is distributed under the GNU General Public License. Comments on documentation pages are used to improve content and then deleted.