diff --git a/ui/.env b/ui/.env
index 1161785b..5fa2208a 100644
--- a/ui/.env
+++ b/ui/.env
@@ -15,6 +15,3 @@ NEXT_PUBLIC_PAGE_SIZE=20
 # =========================================================================
 # Test Properties.
 TEST_USER_A={ "name": "Testf-iwt-a TestIAM-staff", "firstName": "Testf-iwt-a", "lastName": "TestIAM-staff", "uid": "testiwta", "uhUuid": "99997010", "roles": [] }
-XML_SOAP_RESPONSE=<SOAP-ENV:Envelope xmlns:SOAP-ENV="http://schemas.xmlsoap.org/soap/envelope/"><SOAP-ENV:Body><saml1p:Response xmlns:saml1p="urn:oasis:names:tc:SAML:1.0:protocol" InResponseTo="myserver.example.edu" IssueInstant="2018-05-03T19:50:56.390Z" MajorVersion="1" MinorVersion="1" ResponseID="_0044d5b611aac99d82cb9926281bbd30"><saml1p:Status><saml1p:StatusCode Value="saml1p:Success"/></saml1p:Status><saml1:Assertion xmlns:saml1="urn:oasis:names:tc:SAML:1.0:assertion" AssertionID="_0b1889b7ce444ecbe8cfd131501c4f59" IssueInstant="2018-05-03T19:50:56.390Z" Issuer="localhost" MajorVersion="1" MinorVersion="1"><saml1:Conditions NotBefore="2018-05-03T19:50:56.390Z" NotOnOrAfter="2018-05-03T19:51:26.390Z"><saml1:AudienceRestrictionCondition><saml1:Audience>https://myserver.example.edu/myapp</saml1:Audience></saml1:AudienceRestrictionCondition></saml1:Conditions><saml1:AuthenticationStatement AuthenticationInstant="2018-05-03T19:50:56.320Z" AuthenticationMethod="urn:oasis:names:tc:SAML:1.0:am:password"><saml1:Subject><saml1:NameIdentifier>iam_0108</saml1:NameIdentifier><saml1:SubjectConfirmation><saml1:ConfirmationMethod>urn:oasis:names:tc:SAML:1.0:cm:artifact</saml1:ConfirmationMethod></saml1:SubjectConfirmation></saml1:Subject></saml1:AuthenticationStatement><saml1:AttributeStatement><saml1:Subject><saml1:NameIdentifier>testiwta</saml1:NameIdentifier><saml1:SubjectConfirmation><saml1:ConfirmationMethod>urn:oasis:names:tc:SAML:1.0:cm:artifact</saml1:ConfirmationMethod></saml1:SubjectConfirmation></saml1:Subject><saml1:Attribute AttributeName="mail" AttributeNamespace="http://www.ja-sig.org/products/cas/"><saml1:AttributeValue xmlns:xsd="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="xsd:string">testiwta@hawaii.edu</saml1:AttributeValue></saml1:Attribute><saml1:Attribute AttributeName="eduPersonAffiliation" AttributeNamespace="http://www.ja-sig.org/products/cas/"><saml1:AttributeValue xmlns:xsd="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="xsd:string">staff</saml1:AttributeValue></saml1:Attribute><saml1:Attribute AttributeName="uhUuid" AttributeNamespace="http://www.ja-sig.org/products/cas/"><saml1:AttributeValue xmlns:xsd="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="xsd:string">99997010</saml1:AttributeValue></saml1:Attribute><saml1:Attribute AttributeName="givenName" AttributeNamespace="http://www.ja-sig.org/products/cas/"><saml1:AttributeValue xmlns:xsd="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="xsd:string">Testf-iwt-a</saml1:AttributeValue></saml1:Attribute><saml1:Attribute AttributeName="eduPersonOrgDN" AttributeNamespace="http://www.ja-sig.org/products/cas/"><saml1:AttributeValue xmlns:xsd="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="xsd:string">uhsystem</saml1:AttributeValue></saml1:Attribute><saml1:Attribute AttributeName="cn" AttributeNamespace="http://www.ja-sig.org/products/cas/"><saml1:AttributeValue xmlns:xsd="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="xsd:string">Testf-iwt-a TestIAM-staff</saml1:AttributeValue></saml1:Attribute><saml1:Attribute AttributeName="uid" AttributeNamespace="http://www.ja-sig.org/products/cas/"><saml1:AttributeValue xmlns:xsd="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="xsd:string">testiwta</saml1:AttributeValue></saml1:Attribute><saml1:Attribute AttributeName="uhEmail" AttributeNamespace="http://www.ja-sig.org/products/cas/"><saml1:AttributeValue xmlns:xsd="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="xsd:string">testiwta@hawaii.edu</saml1:AttributeValue></saml1:Attribute><saml1:Attribute AttributeName="eduPersonPrincipalName" AttributeNamespace="http://www.ja-sig.org/products/cas/"><saml1:AttributeValue xmlns:xsd="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="xsd:string">testiwta@hawaii.edu</saml1:AttributeValue></saml1:Attribute><saml1:Attribute AttributeName="sn" AttributeNamespace="http://www.ja-sig.org/products/cas/"><saml1:AttributeValue xmlns:xsd="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="xsd:string">TestIAM-staff</saml1:AttributeValue></saml1:Attribute><saml1:Attribute AttributeName="uhOrgAffiliation" AttributeNamespace="http://www.ja-sig.org/products/cas/"><saml1:AttributeValue xmlns:xsd="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="xsd:string">eduPersonOrgDN=uhsystem,eduPersonAffiliation=staff</saml1:AttributeValue></saml1:Attribute></saml1:AttributeStatement></saml1:Assertion></saml1p:Response></SOAP-ENV:Body></SOAP-ENV:Envelope>
-XML_SOAP_RESPONSE_REQUEST_DENIED=<?xml version="1.0" encoding="UTF-8"?><SOAP-ENV:Envelope xmlns:SOAP-ENV="http://schemas.xmlsoap.org/soap/envelope/"><SOAP-ENV:Body><saml1p:Response InResponseTo="fu4lt9kuex6.2024-03-02T04:22:20.681Z" IssueInstant="2024-03-02T04:21:52.029Z" MajorVersion="1" MinorVersion="1" ResponseID="_19a94ee2c5ebf35f62a6d482c2e23e9a" xmlns:saml1p="urn:oasis:names:tc:SAML:1.0:protocol"><saml1p:Status><saml1p:StatusCode Value="saml1p:RequestDenied"/><saml1p:StatusMessage>Ticket 'test' not recognized</saml1p:StatusMessage></saml1p:Status></saml1p:Response></SOAP-ENV:Body></SOAP-ENV:Envelope>
-IRON_SESSION_SECRET=IronSessionSecretForTestingAuthentication
diff --git a/ui/__mocks__/iron-session.ts b/ui/__mocks__/iron-session.ts
deleted file mode 100644
index 5c4f3b86..00000000
--- a/ui/__mocks__/iron-session.ts
+++ /dev/null
@@ -1,3 +0,0 @@
-const ironSession = jest.genMockFromModule('iron-session');
-
-module.exports = ironSession;
diff --git a/ui/__mocks__/next-cas-client.ts b/ui/__mocks__/next-cas-client.ts
new file mode 100644
index 00000000..1a0cdecc
--- /dev/null
+++ b/ui/__mocks__/next-cas-client.ts
@@ -0,0 +1 @@
+module.exports = jest.genMockFromModule('next-cas-client');
diff --git a/ui/__mocks__/next/headers.ts b/ui/__mocks__/next/headers.ts
deleted file mode 100644
index b70d1a94..00000000
--- a/ui/__mocks__/next/headers.ts
+++ /dev/null
@@ -1,3 +0,0 @@
-const nextHeaders = jest.genMockFromModule('next/headers');
-
-module.exports = nextHeaders;
diff --git a/ui/__mocks__/next/navigation.ts b/ui/__mocks__/next/navigation.ts
deleted file mode 100644
index 00652f92..00000000
--- a/ui/__mocks__/next/navigation.ts
+++ /dev/null
@@ -1,3 +0,0 @@
-const nextNavigation = jest.genMockFromModule('next/navigation');
-
-module.exports = nextNavigation;
diff --git a/ui/jest.config.ts b/ui/jest.config.ts
index e36aab35..a9a1576b 100644
--- a/ui/jest.config.ts
+++ b/ui/jest.config.ts
@@ -1,26 +1,22 @@
-import type { Config } from 'jest'
-import nextJest from 'next/jest.js'
+import type { Config } from 'jest';
+import nextJest from 'next/jest.js';
 
 const createJestConfig = nextJest({
-    dir: './',
+    dir: './'
 });
 
 const config: Config = {
     clearMocks: true,
-    collectCoverageFrom: [
-        './src/**/*.ts*',
-    ],
+    collectCoverageFrom: ['./src/**/*.ts*'],
     coveragePathIgnorePatterns: [
-        './src/components/ui', // Ignore shadcn/ui components
+        './src/components/ui' // Ignore shadcn/ui components
     ],
     coverageReporters: ['json-summary', 'text', 'html'],
     testEnvironment: 'jsdom',
     testEnvironmentOptions: {
         customExportConditions: []
     },
-    setupFilesAfterEnv: [
-        '<rootDir>/tests/setup-jest.ts'
-    ],
+    setupFilesAfterEnv: ['<rootDir>/tests/setup-jest.ts'],
     moduleFileExtensions: ['ts', 'tsx', 'js', 'jsx', 'json', 'node'],
     moduleDirectories: ['node_modules', '<rootDir>'],
     moduleNameMapper: {
diff --git a/ui/package.json b/ui/package.json
index 2ab018dc..9a06510b 100644
--- a/ui/package.json
+++ b/ui/package.json
@@ -28,20 +28,18 @@
         "@radix-ui/react-tabs": "^1.0.4",
         "@radix-ui/react-tooltip": "^1.1.2",
         "@tanstack/react-table": "^8.20.1",
-        "camaro": "^6.2.2",
         "class-variance-authority": "^0.7.0",
         "clsx": "^2.1.0",
         "dotenv": "^16.4.1",
-        "iron-session": "^8.0.1",
         "lucide-react": "^0.453.0",
         "next": "14.2.15",
+        "next-cas-client": "^1.2.2",
         "react": "^18",
         "react-dom": "^18",
         "react-hook-form": "^7.50.1",
         "react-idle-timer": "^5.7.2",
         "tailwind-merge": "^2.2.1",
         "tailwindcss-animate": "^1.0.7",
-        "uniqid": "^5.4.0",
         "usehooks-ts": "^3.1.0",
         "zod": "^3.22.4"
     },
diff --git a/ui/src/access/authentication.ts b/ui/src/access/authentication.ts
deleted file mode 100644
index a4798066..00000000
--- a/ui/src/access/authentication.ts
+++ /dev/null
@@ -1,82 +0,0 @@
-'use server';
-
-import { cookies } from 'next/headers';
-import { redirect } from 'next/navigation';
-import { IronSession, getIronSession } from 'iron-session';
-import { SessionData, SessionOptions } from './session';
-import User, { AnonymousUser } from './user';
-import { validateTicket } from './saml-11-validator';
-import { setRoles } from './authorization';
-import { isDeepStrictEqual } from 'util';
-
-const casUrl = process.env.NEXT_PUBLIC_CAS_URL as string;
-const baseUrl = process.env.NEXT_PUBLIC_BASE_URL as string;
-
-/**
- * Gets the current logged-in user.
- * 
- * @returns The current user
- */
-export const getCurrentUser = async (): Promise<User> => {
-    const session = await getSession();
-    if (!session.user) {
-        return AnonymousUser;
-    }
-    return session.user;
-}
-
-/**
- * Redirects the user to the CAS login.
- */
-export const login = (): void => {
-    redirect(`${casUrl}/login?service=${encodeURIComponent(`${baseUrl}/api/cas/login`)}`);
-}
-
-/**
- * Redirects the user to the CAS logout.
- */
-export const logout = (): void => {
-    redirect(`${casUrl}/logout?service=${encodeURIComponent(`${baseUrl}/api/cas/logout`)}`);
-}
-
-/**
- * Validates ticket after successful CAS login, sets their roles, then saves the user to the session.
- * 
- * @remarks
- * This function is primarily used in the /api/cas/login API endpoint to catch the redirect
- * after successfully logging in through CAS.
- * 
- * @param ticket - The ticket returned from successful CAS login
- */
-export const handleLogin = async (ticket: string): Promise<void> => {
-    const user = await validateTicket(ticket);
-    if (isDeepStrictEqual(user, AnonymousUser)) {
-        return;
-    }
-    await setRoles(user);
-
-    const session = await getSession();
-    session.user = user;
-    await session.save();
-};
-
-/**
- * Removes the user from the session, therby logging them out.
- * 
- * @remarks
- * This function is primarly used in the /api/cas/logout API endpoint to catch the redirect
- * after successfully logging out through CAS.
- */
-export const handleLogout = async (): Promise<void> => {
-    const session = await getSession();
-    session.destroy();
-}
-
-/**
- * Get the session data containing the current user stored in Iron Session.
- * 
- * @returns The session containing the current user
- */
-const getSession = async (): Promise<IronSession<SessionData>> => {
-    return await getIronSession<SessionData>(cookies(), SessionOptions);
-}
diff --git a/ui/src/access/saml-11-validator.ts b/ui/src/access/saml-11-validator.ts
deleted file mode 100644
index c526ac7b..00000000
--- a/ui/src/access/saml-11-validator.ts
+++ /dev/null
@@ -1,57 +0,0 @@
-import User, { AnonymousUser } from './user';
-import uniqid from 'uniqid';
-import { format } from 'util';
-import { transform } from 'camaro';
-
-const baseUrl = process.env.NEXT_PUBLIC_BASE_URL as string;
-const casUrl = process.env.NEXT_PUBLIC_CAS_URL as string;
-const samlRequestTemplate = process.env.NEXT_PUBLIC_SAML_REQUEST_TEMPLATE as string;
-
-/**
- * Validates ticket by calling the /samlValidate endpoint of CAS server with the ticket formatted as a SAML.
- * Then the CAS server responds with a SAML containing the user, which is then transformed into the User type.
- * 
- * @param ticket - The ticket returned from successful CAS login
- * 
- * @returns The user from the ticket or an AnonymousUser if error occurs
- */
-export const validateTicket = async (ticket: string): Promise<User> => {
-    const samlValidateUrl = `${casUrl}/samlValidate?TARGET=${encodeURIComponent(`${baseUrl}/api/cas/login`)}`;
-    const samlResponseTemplate = {
-        name: '//*[local-name() = "Attribute"][@AttributeName="cn"]',
-        firstName: '//*[local-name() = "Attribute"][@AttributeName="givenName"]',
-        lastName: '//*[local-name() = "Attribute"][@AttributeName="sn"]',
-        uid: '//*[local-name() = "Attribute"][@AttributeName="uid"]',
-        uhUuid: '//*[local-name() = "Attribute"][@AttributeName="uhUuid"]',
-    };
-
-    const currentDate = new Date().toISOString();
-    const samlRequestBody = format(samlRequestTemplate, `${uniqid()}.${currentDate}`, currentDate, ticket);
-    
-    try {
-        const response = await fetch(samlValidateUrl, {
-            method: 'POST',
-            headers: { 'Content-Type': 'text/xml' },
-            body: samlRequestBody
-        });
-        const data = await response.text();
-
-        const { statusCode }: { statusCode: string } = await transform(data, {
-            statusCode: '//*[local-name() = "Status"]/*[local-name() ="StatusCode"]/@Value'
-        });
-
-        if (statusCode.endsWith('RequestDenied')) {
-            throw new Error('Invalid ticket');
-        }
-
-        const casUser = await transform(data, samlResponseTemplate);
-
-        return {
-            ...casUser,
-            roles: []
-        } as User;
-    
-    } catch (error) {
-        return AnonymousUser;
-    }
-}
diff --git a/ui/src/access/session.ts b/ui/src/access/session.ts
deleted file mode 100644
index 5db36db9..00000000
--- a/ui/src/access/session.ts
+++ /dev/null
@@ -1,14 +0,0 @@
-import User from './user';
-
-export interface SessionData {
-    user: User;
-}
-
-export const SessionOptions = {
-    cookieName: 'SESSIONID',
-    password: process.env.IRON_SESSION_SECRET as string,
-    cookieOptions: {
-        maxAge: undefined,
-        secure: process.env.NODE_ENV === 'production',
-    },
-};
diff --git a/ui/src/access/user.ts b/ui/src/access/user.ts
deleted file mode 100644
index 730d5912..00000000
--- a/ui/src/access/user.ts
+++ /dev/null
@@ -1,17 +0,0 @@
-import { MemberResult } from '@/lib/types';
-import Role from './role';
-
-type User = {
-    roles: Role[];
-} & MemberResult;
-
-export const AnonymousUser: User = {
-    name: '',
-    firstName: '',
-    lastName: '',
-    uid: '',
-    uhUuid: '',
-    roles: [Role.ANONYMOUS] as const
-};
-
-export default User;
diff --git a/ui/src/app/(home)/_components/after-login.tsx b/ui/src/app/(home)/_components/after-login.tsx
index 17d2bf1d..f1e5361c 100644
--- a/ui/src/app/(home)/_components/after-login.tsx
+++ b/ui/src/app/(home)/_components/after-login.tsx
@@ -1,14 +1,14 @@
-import Role from '@/access/role';
+import Role from '@/lib/access/role';
 import { FontAwesomeIcon } from '@fortawesome/react-fontawesome';
-import {faKey, faIdCard, faWrench, faUser} from '@fortawesome/free-solid-svg-icons';
+import { faKey, faIdCard, faWrench, faUser } from '@fortawesome/free-solid-svg-icons';
 import Link from 'next/link';
 import { Button } from '@/components/ui/button';
 import { getNumberOfGroupings, getNumberOfMemberships } from '@/lib/fetchers';
-import { getCurrentUser } from '@/access/authentication';
+import { getUser } from '@/lib/access/user';
 
 const AfterLogin = async () => {
     const [currentUser, numberOfGroupings, numberOfMemberships] = await Promise.all([
-        getCurrentUser(),
+        getUser(),
         getNumberOfGroupings(),
         getNumberOfMemberships()
     ]);
@@ -72,7 +72,11 @@ const AfterLogin = async () => {
                                     className="bg-blue-background rounded-full flex justify-center
                                     items-center h-[30px] w-[30px] absolute left-3 bottom-0 ml-16"
                                 >
-                                    <FontAwesomeIcon className="text-white stroke-none p-0.5" aria-label="key-round" icon={faKey} />
+                                    <FontAwesomeIcon
+                                        className="text-white stroke-none p-0.5"
+                                        aria-label="key-round"
+                                        icon={faKey}
+                                    />
                                 </div>
                             </div>
                         </div>
@@ -98,7 +102,12 @@ const AfterLogin = async () => {
                         <div key={index} className="flex flex-col justify-between">
                             <div>
                                 <div className="flex items-center mb-1">
-                                    <FontAwesomeIcon icon={pageInfoItem.icon} style={{ width: `${pageInfoItem.width}px`, height: `${pageInfoItem.height}px` }} className="mr-5 mb-4 max-w-${pageInfoItem.icon.width} h-auto text-text-primary" aria-label={pageInfoItem.ariaLabel} />
+                                    <FontAwesomeIcon
+                                        icon={pageInfoItem.icon}
+                                        style={{ width: `${pageInfoItem.width}px`, height: `${pageInfoItem.height}px` }}
+                                        className="mr-5 mb-4 max-w-${pageInfoItem.icon.width} h-auto text-text-primary"
+                                        aria-label={pageInfoItem.ariaLabel}
+                                    />
                                     {pageInfoItem.number !== null && (
                                         <span className="text-[2.5rem] text-text-color ">{pageInfoItem.number}</span>
                                     )}
diff --git a/ui/src/app/(home)/_components/login-button.tsx b/ui/src/app/(home)/_components/login-button.tsx
index 997e5284..dc536f12 100644
--- a/ui/src/app/(home)/_components/login-button.tsx
+++ b/ui/src/app/(home)/_components/login-button.tsx
@@ -1,28 +1,18 @@
 'use client';
 
 import { Button } from '@/components/ui/button';
-import Role from '@/access/role';
-import User from '@/access/user';
-import { login, logout } from '@/access/authentication';
+import Role from '@/lib/access/role';
+import { login, logout } from 'next-cas-client';
+import { User } from '@/lib/access/user';
 
-const LoginButton = ({
-    currentUser
-}: {
-    currentUser: User;
-}) => (
+const LoginButton = ({ currentUser }: { currentUser: User }) => (
     <>
-        {!currentUser.roles.includes(Role.UH) ? (
-            <Button
-                size="lg"
-                variant="default"
-                onClick={() => login()}>
+        {!currentUser?.roles.includes(Role.UH) ? (
+            <Button size="lg" variant="default" onClick={() => login()}>
                 Login Here
             </Button>
         ) : (
-            <Button
-                size="lg"
-                variant="default"
-                onClick={() => logout()}>
+            <Button size="lg" variant="default" onClick={() => logout()}>
                 Logout
             </Button>
         )}
diff --git a/ui/src/app/(home)/page.tsx b/ui/src/app/(home)/page.tsx
index 6e8bf4e0..656f7fe9 100644
--- a/ui/src/app/(home)/page.tsx
+++ b/ui/src/app/(home)/page.tsx
@@ -1,13 +1,13 @@
 import Image from 'next/image';
 import BeforeLogin from '@/app/(home)/_components/before-login';
 import AfterLogin from '@/app/(home)/_components/after-login';
-import { getCurrentUser } from '@/access/authentication';
-import Role from '@/access/role';
+import Role from '@/lib/access/role';
 import LoginButton from '@/app/(home)/_components/login-button';
 import Announcements from '@/app/(home)/_components/announcements';
+import { getUser } from '@/lib/access/user';
 
 const Home = async () => {
-    const currentUser = await getCurrentUser();
+    const currentUser = await getUser();
 
     return (
         <main>
diff --git a/ui/src/app/api/cas/[client]/route.ts b/ui/src/app/api/cas/[client]/route.ts
new file mode 100644
index 00000000..ef38845f
--- /dev/null
+++ b/ui/src/app/api/cas/[client]/route.ts
@@ -0,0 +1,5 @@
+import { loadUser } from '@/lib/access/user';
+import { ValidatorProtocol } from 'next-cas-client';
+import { handleAuth } from 'next-cas-client/app';
+
+export const GET = handleAuth({ loadUser, validator: ValidatorProtocol.SAML11 });
diff --git a/ui/src/app/api/cas/login/route.ts b/ui/src/app/api/cas/login/route.ts
deleted file mode 100644
index cf7d8e4f..00000000
--- a/ui/src/app/api/cas/login/route.ts
+++ /dev/null
@@ -1,17 +0,0 @@
-import { redirect } from 'next/navigation';
-import type { NextRequest } from 'next/server';
-import { handleLogin } from '@/access/authentication';
-
-const baseUrl = process.env.NEXT_PUBLIC_BASE_URL as string;
-
-/**
- * Next.js route handler to catch the redirect after successfully logging in through CAS.
- * Handles the login then redirects the user back to the home page.
- * 
- * @param req - The request object
- */
-export const GET = async (req: NextRequest) => {
-    const ticket = req.nextUrl.searchParams.get('ticket') as string;
-    await handleLogin(ticket);
-    redirect(baseUrl);
-}
diff --git a/ui/src/app/api/cas/logout/route.ts b/ui/src/app/api/cas/logout/route.ts
deleted file mode 100644
index 6fb133e5..00000000
--- a/ui/src/app/api/cas/logout/route.ts
+++ /dev/null
@@ -1,13 +0,0 @@
-import { redirect } from 'next/navigation';
-import { handleLogout } from '@/access/authentication';
-
-const baseUrl = process.env.NEXT_PUBLIC_BASE_URL as string;
-
-/**
- * Next.js route handler to catch the redirect after successfully logging out through CAS.
- * Handles the logout then redirects the user back to the home page.
- */
-export const GET = async () => {
-    await handleLogout();
-    redirect(baseUrl);
-}
diff --git a/ui/src/app/feedback/_components/feedback-form.tsx b/ui/src/app/feedback/_components/feedback-form.tsx
index 33f34dc6..6b78f4f4 100644
--- a/ui/src/app/feedback/_components/feedback-form.tsx
+++ b/ui/src/app/feedback/_components/feedback-form.tsx
@@ -7,7 +7,7 @@ import { z } from 'zod';
 import { zodResolver } from '@hookform/resolvers/zod';
 import { useForm } from 'react-hook-form';
 import { sendFeedback } from '@/lib/actions';
-import User from '@/access/user';
+import User from '@/lib/access/user';
 import { Textarea } from '@/components/ui/textarea';
 import { Select, SelectContent, SelectItem, SelectTrigger, SelectValue } from '@/components/ui/select';
 import { useState } from 'react';
diff --git a/ui/src/app/feedback/page.tsx b/ui/src/app/feedback/page.tsx
index 41dcaf8b..c84544f8 100644
--- a/ui/src/app/feedback/page.tsx
+++ b/ui/src/app/feedback/page.tsx
@@ -1,8 +1,8 @@
+import { getUser } from '@/lib/access/user';
 import FeedbackForm from '@/app/feedback/_components/feedback-form';
-import { getCurrentUser } from '@/access/authentication';
 
 const Feedback = async () => {
-    const currentUser = await getCurrentUser();
+    const currentUser = await getUser();
 
     return (
         <div className="container grid sm:grid-cols-12 pt-5 pb-4">
diff --git a/ui/src/components/layout/navbar/login-button.tsx b/ui/src/components/layout/navbar/login-button.tsx
index 508ce91f..526caea1 100644
--- a/ui/src/components/layout/navbar/login-button.tsx
+++ b/ui/src/components/layout/navbar/login-button.tsx
@@ -1,34 +1,26 @@
 'use client';
 
 import { Button } from '@/components/ui/button';
-import Role from '@/access/role';
-import User from '@/access/user';
-import { login, logout } from '@/access/authentication';
+import Role from '@/lib/access/role';
+import User from '@/lib/access/user';
+import { login, logout } from 'next-cas-client';
 import { FontAwesomeIcon } from '@fortawesome/react-fontawesome';
 import { faSignInAlt, faSignOutAlt } from '@fortawesome/free-solid-svg-icons';
 
-
-const LoginButton = ({ 
-    currentUser 
-}: {
-    currentUser: User;
-}) => (
+const LoginButton = ({ currentUser }: { currentUser: User }) => (
     <>
         {!currentUser.roles.includes(Role.UH) ? (
-            <Button 
-                variant="default" 
-                onClick={() => login()}>
+            <Button variant="default" onClick={() => login()}>
                 Login <FontAwesomeIcon className="ml-1" icon={faSignInAlt} />
             </Button>
         ) : (
-            <Button 
-                variant="outline" 
-                onClick={() => logout()}>
+            <Button variant="outline" onClick={() => logout()}>
                 Logout&nbsp;
-                <span className="sm:inline hidden">({currentUser.uid})</span> <FontAwesomeIcon className="ml-1" icon={faSignOutAlt} />
+                <span className="sm:inline hidden">({currentUser.uid})</span>{' '}
+                <FontAwesomeIcon className="ml-1" icon={faSignOutAlt} />
             </Button>
         )}
-    </> 
+    </>
 );
 
 export default LoginButton;
diff --git a/ui/src/components/layout/navbar/navbar-links.ts b/ui/src/components/layout/navbar/navbar-links.ts
index de2c535f..4fb2ca23 100644
--- a/ui/src/components/layout/navbar/navbar-links.ts
+++ b/ui/src/components/layout/navbar/navbar-links.ts
@@ -1,4 +1,4 @@
-import Role from '@/access/role';
+import Role from '@/lib/access/role';
 
 export const NavbarLinks = [
     {
diff --git a/ui/src/components/layout/navbar/navbar-menu.tsx b/ui/src/components/layout/navbar/navbar-menu.tsx
index b0f94f5e..483e605b 100644
--- a/ui/src/components/layout/navbar/navbar-menu.tsx
+++ b/ui/src/components/layout/navbar/navbar-menu.tsx
@@ -1,13 +1,13 @@
 'use client';
 
 import { Sheet, SheetContent, SheetDescription, SheetHeader, SheetTitle, SheetTrigger } from '@/components/ui/sheet';
-import User from '@/access/user';
+import { User } from 'next-cas-client';
 import Link from 'next/link';
 import { NavbarLinks } from './navbar-links';
 import { useState } from 'react';
-import Role from '@/access/role';
+import Role from '@/lib/access/role';
 import NavbarMenuIcon from './navbar-menu-icon';
-import {VisuallyHidden} from '@radix-ui/react-visually-hidden';
+import { VisuallyHidden } from '@radix-ui/react-visually-hidden';
 
 const NavbarMenu = ({ currentUser }: { currentUser: User }) => {
     const [open, setOpen] = useState(false);
@@ -21,25 +21,22 @@ const NavbarMenu = ({ currentUser }: { currentUser: User }) => {
                 <NavbarMenuIcon open={open} aria-hidden="true" />
             </SheetTrigger>
 
-            <SheetContent
-                className="mt-[3.9rem] text-xl pt-5 lg:hidden"
-                side="top"
-                onClickOutside={handleClick}>
+            <SheetContent className="mt-[3.9rem] text-xl pt-5 lg:hidden" side="top" onClickOutside={handleClick}>
                 <VisuallyHidden>
                     <SheetHeader>
                         <SheetTitle>Main Navigation Menu</SheetTitle>
-                        <SheetDescription/>
+                        <SheetDescription />
                     </SheetHeader>
                 </VisuallyHidden>
                 <nav className="container flex flex-col space-y-5 h-1/4">
-                    {NavbarLinks
-                        .filter((navbarLink) =>
-                            currentUser.roles.includes(Role.ADMIN) ||
-                            currentUser.roles.includes(navbarLink.role))
-                        .map((navbarLink) =>
-                            <Link href={navbarLink.link} key={navbarLink.name} className="hover:text-uh-teal">
-                                {navbarLink.name}
-                            </Link>)}
+                    {NavbarLinks.filter(
+                        (navbarLink) =>
+                            currentUser?.roles.includes(Role.ADMIN) || currentUser?.roles.includes(navbarLink.role)
+                    ).map((navbarLink) => (
+                        <Link href={navbarLink.link} key={navbarLink.name} className="hover:text-uh-teal">
+                            {navbarLink.name}
+                        </Link>
+                    ))}
                 </nav>
             </SheetContent>
         </Sheet>
diff --git a/ui/src/components/layout/navbar/navbar.tsx b/ui/src/components/layout/navbar/navbar.tsx
index b5c67452..8382e4bc 100644
--- a/ui/src/components/layout/navbar/navbar.tsx
+++ b/ui/src/components/layout/navbar/navbar.tsx
@@ -1,14 +1,14 @@
 import Link from 'next/link';
 import Image from 'next/image';
-import Role from '@/access/role';
-import { getCurrentUser } from '@/access/authentication';
 import { NavbarLinks } from './navbar-links';
 import LoginButton from './login-button';
 import NavbarMenu from './navbar-menu';
 import TimeoutModal from '@/components/modal/timeout-modal';
+import { getUser } from '@/lib/access/user';
+import Role from '@/lib/access/role';
 
 const Navbar = async () => {
-    const currentUser = await getCurrentUser();
+    const currentUser = await getUser();
     return (
         <>
             <TimeoutModal currentUser={currentUser} />
diff --git a/ui/src/components/modal/timeout-modal.tsx b/ui/src/components/modal/timeout-modal.tsx
index aecac090..97b9b611 100644
--- a/ui/src/components/modal/timeout-modal.tsx
+++ b/ui/src/components/modal/timeout-modal.tsx
@@ -1,33 +1,29 @@
 'use client';
 
 import { useEffect, useState } from 'react';
-import { 
+import {
     AlertDialog,
-    AlertDialogHeader, 
-    AlertDialogContent, 
-    AlertDialogDescription, 
-    AlertDialogTitle, 
+    AlertDialogHeader,
+    AlertDialogContent,
+    AlertDialogDescription,
+    AlertDialogTitle,
     AlertDialogFooter,
     AlertDialogAction,
     AlertDialogCancel
 } from '@/components/ui/alert-dialog';
 import { useIdleTimer } from 'react-idle-timer';
-import { logout } from '@/access/authentication';
-import User from '@/access/user';
-import Role from '@/access/role';
+import User from '@/lib/access/user';
+import { logout } from 'next-cas-client';
+import Role from '@/lib/access/role';
 
 const timeout = 1000 * 60 * 30; // Total timeout - 30 minutes in milliseconds
 const promptBeforeIdle = 1000 * 60 * 5; // Time prior to timeout until modal opens - 5 minutes in milliseconds
 
-const TimeoutModal = ({
-    currentUser
-}: {
-    currentUser: User
-}) => {
+const TimeoutModal = ({ currentUser }: { currentUser: User }) => {
     const [open, setOpen] = useState(false);
     const [remainingTime, setRemainingTime] = useState<number>(timeout);
 
-    const { activate,  getRemainingTime } = useIdleTimer({
+    const { activate, getRemainingTime } = useIdleTimer({
         onIdle: () => logout(),
         onPrompt: () => setOpen(true),
         timeout,
@@ -40,7 +36,7 @@ const TimeoutModal = ({
         const interval = setInterval(() => {
             setRemainingTime(getRemainingTime());
         }, 500);
-    
+
         return () => {
             clearInterval(interval);
         };
@@ -50,15 +46,15 @@ const TimeoutModal = ({
      * Closes the modal and resets the timer.
      */
     const close = () => {
-        activate(); 
+        activate();
         setOpen(false);
     };
 
     /**
      * Convert miliseconds into mm:ss string format.
-     * 
+     *
      * @param ms - the number of milliseconds
-     * 
+     *
      * @returns the mm:ss formatted string
      */
     const formatTime = (ms: number) => {
@@ -69,14 +65,13 @@ const TimeoutModal = ({
         return `${minutes}:${seconds.toString().padStart(2, '0')}`;
     };
 
-    return ( 
+    return (
         <AlertDialog open={open}>
             <AlertDialogContent>
                 <AlertDialogHeader>
                     <AlertDialogTitle>Inactivity Warning</AlertDialogTitle>
                     <AlertDialogDescription>
-                        Warning! This session will expire soon. 
-                        Time remaining: 
+                        Warning! This session will expire soon. Time remaining:
                         <span className="text-text-color"> {formatTime(remainingTime)}.</span>
                     </AlertDialogDescription>
                 </AlertDialogHeader>
@@ -87,6 +82,6 @@ const TimeoutModal = ({
             </AlertDialogContent>
         </AlertDialog>
     );
-}
- 
+};
+
 export default TimeoutModal;
diff --git a/ui/src/access/authorization.ts b/ui/src/lib/access/authorization.ts
similarity index 81%
rename from ui/src/access/authorization.ts
rename to ui/src/lib/access/authorization.ts
index 77f8c4da..532bcf16 100644
--- a/ui/src/access/authorization.ts
+++ b/ui/src/lib/access/authorization.ts
@@ -1,18 +1,16 @@
-'use server';
-
-import User from './user';
 import Role from './role';
+import User from './user';
 
 const apiBaseUrl = process.env.NEXT_PUBLIC_API_2_1_BASE_URL as string;
 
 /**
  * Sets the appropriate roles for a user.
- * 
+ *
  * @param user - The user
  */
 export const setRoles = async (user: User): Promise<void> => {
     // All users should have ANONYMOUS role to describe universal access (e.g. /about page in NavLinks.ts)
-    user.roles.push(Role.ANONYMOUS); 
+    user.roles.push(Role.ANONYMOUS);
 
     if (isValidUhUuid(user.uhUuid)) {
         user.roles.push(Role.UH);
@@ -23,40 +21,40 @@ export const setRoles = async (user: User): Promise<void> => {
     if (await isAdmin(user.uhUuid)) {
         user.roles.push(Role.ADMIN);
     }
-}
+};
 
 /**
  * Calls UH Groupings API to check if the uhIdentifier is an owner.
- * 
+ *
  * @param uhIdentifier - The uid or uhUuid
- * 
+ *
  * @returns True if the uhIdentifier is an owner of a grouping
  */
-const isOwner = async (uhIdentifier: string): Promise<boolean> => 
-    await fetch(`${apiBaseUrl}/owners`, { headers: { 'current_user': uhIdentifier }})
-        .then(res => res.json())
+const isOwner = async (uhIdentifier: string): Promise<boolean> =>
+    await fetch(`${apiBaseUrl}/owners`, { headers: { current_user: uhIdentifier } })
+        .then((res) => res.json())
         .catch(() => false);
 
 /**
  * Calls UH Groupings API to check if the uhIdentifier is an admin.
- * 
+ *
  * @param uhIdentifier - The uid or uhUuid
- * 
+ *
  * @returns True if the uhIdentifier is an admin
  */
-const isAdmin = async (uhIdentifier: string): Promise<boolean> => 
-    await fetch(`${apiBaseUrl}/admins`, { headers: { 'current_user': uhIdentifier }})
-        .then(res => res.json())
+const isAdmin = async (uhIdentifier: string): Promise<boolean> =>
+    await fetch(`${apiBaseUrl}/admins`, { headers: { current_user: uhIdentifier } })
+        .then((res) => res.json())
         .catch(() => false);
 
 /**
  * Checks if uhUuid is valid using Regex.
- * 
+ *
  * @param uhUuid - 8 digit unique user indentifier
- * 
+ *
  * @returns True if uhUuid is valid
  */
 const isValidUhUuid = (uhUuid: string): boolean => {
     const uhUuidPattern = new RegExp(/^[0-9]{8}$/);
     return uhUuidPattern.test(uhUuid);
-}
+};
diff --git a/ui/src/access/role.ts b/ui/src/lib/access/role.ts
similarity index 100%
rename from ui/src/access/role.ts
rename to ui/src/lib/access/role.ts
diff --git a/ui/src/lib/access/user.ts b/ui/src/lib/access/user.ts
new file mode 100644
index 00000000..7e07a682
--- /dev/null
+++ b/ui/src/lib/access/user.ts
@@ -0,0 +1,36 @@
+import { MemberResult } from '@/lib/types';
+import Role from './role';
+import { CasUser } from 'next-cas-client';
+import { setRoles } from './authorization';
+import { getCurrentUser } from 'next-cas-client/app';
+
+type User = {
+    roles: Role[];
+} & MemberResult;
+
+export const AnonymousUser: User = {
+    name: '',
+    firstName: '',
+    lastName: '',
+    uid: '',
+    uhUuid: '',
+    roles: [Role.ANONYMOUS] as const
+};
+
+export const loadUser = async (casUser: CasUser): Promise<User> => {
+    const user = {
+        name: casUser.attributes.cn,
+        firstName: casUser.attributes.givenName,
+        lastName: casUser.attributes.sn,
+        uid: casUser.attributes.uid,
+        uhUuid: casUser.attributes.uhUuid,
+        roles: []
+    } as User;
+
+    await setRoles(user);
+    return user;
+};
+
+export const getUser = async (): Promise<User> => (await getCurrentUser<User>()) ?? AnonymousUser;
+
+export default User;
diff --git a/ui/src/lib/actions.ts b/ui/src/lib/actions.ts
index 6d1fe340..f5b09816 100644
--- a/ui/src/lib/actions.ts
+++ b/ui/src/lib/actions.ts
@@ -1,6 +1,5 @@
 'use server';
 
-import { getCurrentUser } from '@/access/authentication';
 import {
     ApiError,
     EmailResult,
@@ -22,6 +21,7 @@ import {
     putRequest,
     putRequestAsync
 } from './http-client';
+import { getUser } from '@/lib/access/user';
 
 const baseUrl = process.env.NEXT_PUBLIC_API_2_1_BASE_URL as string;
 
@@ -41,7 +41,7 @@ export const updateDescription = async (
     description: string,
     groupingPath: string
 ): Promise<GroupingUpdateDescriptionResult> => {
-    const currentUser = await getCurrentUser();
+    const currentUser = await getUser();
     const endpoint = `${baseUrl}/groupings/${groupingPath}/description`;
     return putRequest<GroupingUpdateDescriptionResult>(endpoint, currentUser.uid, description);
 };
@@ -58,7 +58,7 @@ export const addIncludeMembers = async (
     uhIdentifiers: string[],
     groupingPath: string
 ): Promise<GroupingMoveMembersResult & ApiError> => {
-    const currentUser = await getCurrentUser();
+    const currentUser = await getUser();
     const endpoint = `${baseUrl}/groupings/${groupingPath}/include-members`;
     return putRequest<GroupingMoveMembersResult>(endpoint, currentUser.uid, uhIdentifiers);
 };
@@ -75,7 +75,7 @@ export const addIncludeMembersAsync = async (
     uhIdentifiers: string[],
     groupingPath: string
 ): Promise<GroupingMoveMembersResult & ApiError> => {
-    const currentUser = await getCurrentUser();
+    const currentUser = await getUser();
     const endpoint = `${baseUrl}/groupings/${groupingPath}/include-members/async`;
     return putRequestAsync<GroupingMoveMembersResult>(endpoint, currentUser.uid, uhIdentifiers);
 };
@@ -92,7 +92,7 @@ export const addExcludeMembers = async (
     uhIdentifiers: string[],
     groupingPath: string
 ): Promise<GroupingMoveMembersResult & ApiError> => {
-    const currentUser = await getCurrentUser();
+    const currentUser = await getUser();
     const endpoint = `${baseUrl}/groupings/${groupingPath}/exclude-members`;
     return putRequest<GroupingMoveMembersResult>(endpoint, currentUser.uid, uhIdentifiers);
 };
@@ -109,7 +109,7 @@ export const addExcludeMembersAsync = async (
     uhIdentifiers: string[],
     groupingPath: string
 ): Promise<GroupingMoveMembersResult & ApiError> => {
-    const currentUser = await getCurrentUser();
+    const currentUser = await getUser();
     const endpoint = `${baseUrl}/groupings/${groupingPath}/exclude-members/async`;
     return putRequestAsync<GroupingMoveMembersResult>(endpoint, currentUser.uid, uhIdentifiers);
 };
@@ -126,7 +126,7 @@ export const addOwners = async (
     uhIdentifiers: string[],
     groupingPath: string
 ): Promise<GroupingAddResults & ApiError> => {
-    const currentUser = await getCurrentUser();
+    const currentUser = await getUser();
     const endpoint = `${baseUrl}/groupings/${groupingPath}/owners/${uhIdentifiers}`;
     return postRequest<GroupingAddResults>(endpoint, currentUser.uid);
 };
@@ -139,7 +139,7 @@ export const addOwners = async (
  * @returns The promise of the grouping add results or ApiError type
  */
 export const addAdmin = async (uhIdentifier: string): Promise<GroupingAddResult & ApiError> => {
-    const currentUser = await getCurrentUser();
+    const currentUser = await getUser();
     const endpoint = `${baseUrl}/admins/${uhIdentifier}`;
     return postRequest<GroupingAddResult>(endpoint, currentUser.uid);
 };
@@ -156,7 +156,7 @@ export const removeFromGroups = async (
     uhIdentifier: string,
     groupPaths: string[]
 ): Promise<GroupingRemoveResults & ApiError> => {
-    const currentUser = await getCurrentUser();
+    const currentUser = await getUser();
     const endpoint = `${baseUrl}/admins/${groupPaths}/${uhIdentifier}`;
     return deleteRequest<GroupingRemoveResults>(endpoint, currentUser.uid);
 };
@@ -173,7 +173,7 @@ export const removeIncludeMembers = async (
     uhIdentifiers: string[],
     groupingPath: string
 ): Promise<GroupingRemoveResults & ApiError> => {
-    const currentUser = await getCurrentUser();
+    const currentUser = await getUser();
     const endpoint = `${baseUrl}/groupings/${groupingPath}/include-members`;
     return deleteRequest<GroupingRemoveResults>(endpoint, currentUser.uid, uhIdentifiers);
 };
@@ -190,7 +190,7 @@ export const removeExcludeMembers = async (
     uhIdentifiers: string[],
     groupingPath: string
 ): Promise<GroupingRemoveResults & ApiError> => {
-    const currentUser = await getCurrentUser();
+    const currentUser = await getUser();
     const endpoint = `${baseUrl}/groupings/${groupingPath}/exclude-members`;
     return deleteRequest<GroupingRemoveResults>(endpoint, currentUser.uid, uhIdentifiers);
 };
@@ -207,7 +207,7 @@ export const removeOwners = async (
     uhIdentifiers: string[],
     groupingPath: string
 ): Promise<GroupingRemoveResults & ApiError> => {
-    const currentUser = await getCurrentUser();
+    const currentUser = await getUser();
     const endpoint = `${baseUrl}/groupings/${groupingPath}/owners/${uhIdentifiers}`;
     return deleteRequest<GroupingRemoveResults>(endpoint, currentUser.uid);
 };
@@ -220,7 +220,7 @@ export const removeOwners = async (
  * @returns The promise of the grouping remove result or ApiError type
  */
 export const removeAdmin = async (uhIdentifier: string): Promise<GroupingRemoveResult & ApiError> => {
-    const currentUser = await getCurrentUser();
+    const currentUser = await getUser();
     const endpoint = `${baseUrl}/admins/${uhIdentifier}`;
     return deleteRequest<GroupingRemoveResult>(endpoint, currentUser.uid);
 };
@@ -233,7 +233,7 @@ export const removeAdmin = async (uhIdentifier: string): Promise<GroupingRemoveR
  * @returns The promise of the member attribute results or ApiError type
  */
 export const memberAttributeResults = async (uhIdentifiers: string[]): Promise<MemberAttributeResults & ApiError> => {
-    const currentUser = await getCurrentUser();
+    const currentUser = await getUser();
     const endpoint = `${baseUrl}/members`;
     return postRequest<MemberAttributeResults>(endpoint, currentUser.uid, uhIdentifiers);
 };
@@ -249,7 +249,7 @@ export const memberAttributeResults = async (uhIdentifiers: string[]): Promise<M
 export const memberAttributeResultsAsync = async (
     uhIdentifiers: string[]
 ): Promise<MemberAttributeResults & ApiError> => {
-    const currentUser = await getCurrentUser();
+    const currentUser = await getUser();
     const endpoint = `${baseUrl}/members/async`;
     return postRequestAsync<MemberAttributeResults>(endpoint, currentUser.uid, uhIdentifiers);
 };
@@ -262,7 +262,7 @@ export const memberAttributeResultsAsync = async (
  * @returns The promise of the grouping move member result or ApiError type
  */
 export const optIn = async (groupingPath: string): Promise<GroupingMoveMemberResult & ApiError> => {
-    const currentUser = await getCurrentUser();
+    const currentUser = await getUser();
     const endpoint = `${baseUrl}/groupings/${groupingPath}/include-members/${currentUser.uid}/self`;
     return putRequest<GroupingMoveMemberResult>(endpoint, currentUser.uid);
 };
@@ -275,7 +275,7 @@ export const optIn = async (groupingPath: string): Promise<GroupingMoveMemberRes
  * @returns The promise of the grouping move member result or ApiError type
  */
 export const optOut = async (groupingPath: string): Promise<GroupingMoveMemberResult & ApiError> => {
-    const currentUser = await getCurrentUser();
+    const currentUser = await getUser();
     const endpoint = `${baseUrl}/groupings/${groupingPath}/exclude-members/${currentUser.uid}/self`;
     return putRequest<GroupingMoveMemberResult>(endpoint, currentUser.uid);
 };
@@ -288,7 +288,7 @@ export const optOut = async (groupingPath: string): Promise<GroupingMoveMemberRe
  * @returns The promise of the grouping remove results or ApiError type
  */
 export const resetIncludeGroup = async (groupingPath: string): Promise<GroupingRemoveResults & ApiError> => {
-    const currentUser = await getCurrentUser();
+    const currentUser = await getUser();
     const endpoint = `${baseUrl}/groupings/${groupingPath}/include`;
     return deleteRequest(endpoint, currentUser.uid);
 };
@@ -301,7 +301,7 @@ export const resetIncludeGroup = async (groupingPath: string): Promise<GroupingR
  * @returns The promise of the grouping remove results or ApiError type
  */
 export const resetIncludeGroupAsync = async (groupingPath: string): Promise<GroupingRemoveResults & ApiError> => {
-    const currentUser = await getCurrentUser();
+    const currentUser = await getUser();
     const endpoint = `${baseUrl}/groupings/${groupingPath}/include/async`;
     return deleteRequestAsync<GroupingRemoveResults>(endpoint, currentUser.uid);
 };
@@ -314,7 +314,7 @@ export const resetIncludeGroupAsync = async (groupingPath: string): Promise<Grou
  * @returns The promise of the grouping remove results or ApiError type
  */
 export const resetExcludeGroup = async (groupingPath: string): Promise<GroupingRemoveResults & ApiError> => {
-    const currentUser = await getCurrentUser();
+    const currentUser = await getUser();
     const endpoint = `${baseUrl}/groupings/${groupingPath}/exclude`;
     return deleteRequest<GroupingRemoveResults>(endpoint, currentUser.uid);
 };
@@ -327,7 +327,7 @@ export const resetExcludeGroup = async (groupingPath: string): Promise<GroupingR
  * @returns The promise of the grouping remove results or ApiError type
  */
 export const resetExcludeGroupAsync = async (groupingPath: string): Promise<GroupingRemoveResults & ApiError> => {
-    const currentUser = await getCurrentUser();
+    const currentUser = await getUser();
     const endpoint = `${baseUrl}/groupings/${groupingPath}/exclude/async`;
     return deleteRequestAsync<GroupingRemoveResults>(endpoint, currentUser.uid);
 };
@@ -340,7 +340,7 @@ export const resetExcludeGroupAsync = async (groupingPath: string): Promise<Grou
  * @returns The EmailResult
  */
 export const sendFeedback = async (feedback: Feedback): Promise<EmailResult> => {
-    const currentUser = await getCurrentUser();
+    const currentUser = await getUser();
     const endpoint = `${baseUrl}/email/send/feedback`;
     return postRequest<EmailResult>(endpoint, currentUser.uid, feedback);
 };
@@ -353,7 +353,7 @@ export const sendFeedback = async (feedback: Feedback): Promise<EmailResult> =>
  * @returns The EmailResult
  */
 export const sendStackTrace = async (stackTrace: string): Promise<EmailResult> => {
-    const currentUser = await getCurrentUser();
+    const currentUser = await getUser();
     const endpoint = `${baseUrl}/email/send/stack-trace`;
     return postRequest<EmailResult>(endpoint, currentUser.uid, stackTrace, 'text/plain');
 };
diff --git a/ui/src/lib/fetchers.ts b/ui/src/lib/fetchers.ts
index ff399a99..c2a0e704 100644
--- a/ui/src/lib/fetchers.ts
+++ b/ui/src/lib/fetchers.ts
@@ -1,4 +1,3 @@
-import { getCurrentUser } from '@/access/authentication';
 import { getRequest, postRequestRetry } from './http-client';
 import {
     Announcements,
@@ -11,6 +10,7 @@ import {
     MembershipResults,
     GroupingGroupsMembers
 } from './types';
+import { getUser } from '@/lib/access/user';
 
 const baseUrl = process.env.NEXT_PUBLIC_API_2_1_BASE_URL as string;
 
@@ -42,7 +42,7 @@ export const ownedGrouping = async (
     sortString: string,
     isAscending: boolean
 ): Promise<GroupingGroupsMembers & ApiError> => {
-    const currentUser = await getCurrentUser();
+    const currentUser = await getUser();
     const params = new URLSearchParams({
         page: page.toString(),
         size: size.toString(),
@@ -61,7 +61,7 @@ export const ownedGrouping = async (
  * @returns The promise of the grouping description or ApiError type
  */
 export const groupingDescription = async (groupingPath: string): Promise<GroupingDescription> => {
-    const currentUser = await getCurrentUser();
+    const currentUser = await getUser();
     const endpoint = `${baseUrl}/groupings/${groupingPath}/description`;
     return getRequest<GroupingDescription>(endpoint, currentUser.uid);
 };
@@ -74,7 +74,7 @@ export const groupingDescription = async (groupingPath: string): Promise<Groupin
  * @returns The promise of the grouping sync destinations or ApiError type
  */
 export const groupingSyncDest = async (groupingPath: string): Promise<GroupingSyncDestinations & ApiError> => {
-    const currentUser = await getCurrentUser();
+    const currentUser = await getUser();
     const endpoint = `${baseUrl}/groupings/${groupingPath}/groupings-sync-destinations`;
     return getRequest<GroupingSyncDestinations>(endpoint, currentUser.uid);
 };
@@ -87,7 +87,7 @@ export const groupingSyncDest = async (groupingPath: string): Promise<GroupingSy
  * @returns The promise of the grouping opt attributes or ApiError type
  */
 export const groupingOptAttributes = async (groupingPath: string): Promise<GroupingOptAttributes & ApiError> => {
-    const currentUser = await getCurrentUser();
+    const currentUser = await getUser();
     const endpoint = `${baseUrl}/groupings/${groupingPath}/opt-attributes`;
     return getRequest<GroupingOptAttributes>(endpoint, currentUser.uid);
 };
@@ -98,7 +98,7 @@ export const groupingOptAttributes = async (groupingPath: string): Promise<Group
  * @returns The promise of the grouping admins or ApiError type
  */
 export const groupingAdmins = async (): Promise<GroupingGroupMembers & ApiError> => {
-    const currentUser = await getCurrentUser();
+    const currentUser = await getUser();
     const endpoint = `${baseUrl}/grouping-admins`;
     return getRequest<GroupingGroupMembers>(endpoint, currentUser.uid);
 };
@@ -109,7 +109,7 @@ export const groupingAdmins = async (): Promise<GroupingGroupMembers & ApiError>
  * @returns The promise of all the grouping paths or ApiError type
  */
 export const getAllGroupings = async (): Promise<GroupingPaths & ApiError> => {
-    const currentUser = await getCurrentUser();
+    const currentUser = await getUser();
     const endpoint = `${baseUrl}/all-groupings`;
     return getRequest<GroupingPaths>(endpoint, currentUser.uid);
 };
@@ -120,7 +120,7 @@ export const getAllGroupings = async (): Promise<GroupingPaths & ApiError> => {
  * @returns The promise of the membership results or ApiError type
  */
 export const membershipResults = async (): Promise<MembershipResults & ApiError> => {
-    const currentUser = await getCurrentUser();
+    const currentUser = await getUser();
     const endpoint = `${baseUrl}/members/${currentUser.uid}/memberships`;
     return getRequest<MembershipResults>(endpoint, currentUser.uid);
 };
@@ -133,7 +133,7 @@ export const membershipResults = async (): Promise<MembershipResults & ApiError>
  * @returns The promise of the membership results or ApiError type
  */
 export const managePersonResults = async (uhIdentifier: string): Promise<MembershipResults & ApiError> => {
-    const currentUser = await getCurrentUser();
+    const currentUser = await getUser();
     const endpoint = `${baseUrl}/members/${uhIdentifier}/groupings`;
     return getRequest<MembershipResults>(endpoint, currentUser.uid);
 };
@@ -144,7 +144,7 @@ export const managePersonResults = async (uhIdentifier: string): Promise<Members
  * @returns The promise of the number of memberships or ApiError type
  */
 export const getNumberOfMemberships = async (): Promise<number> => {
-    const currentUser = await getCurrentUser();
+    const currentUser = await getUser();
     const endpoint = `${baseUrl}/members/${currentUser.uid}/memberships/count`;
     return getRequest<number>(endpoint, currentUser.uid);
 };
@@ -155,7 +155,7 @@ export const getNumberOfMemberships = async (): Promise<number> => {
  * @returns The promise of the grouping paths or ApiError type
  */
 export const optInGroupingPaths = async (): Promise<GroupingPaths & ApiError> => {
-    const currentUser = await getCurrentUser();
+    const currentUser = await getUser();
     const endpoint = `${baseUrl}/groupings/members/${currentUser.uid}/opt-in-groups`;
     return getRequest<GroupingPaths>(endpoint, currentUser.uid);
 };
@@ -168,7 +168,7 @@ export const optInGroupingPaths = async (): Promise<GroupingPaths & ApiError> =>
  * @returns The promise of the grouping group members or ApiError type
  */
 export const groupingOwners = async (groupingPath: string): Promise<GroupingGroupMembers & ApiError> => {
-    const currentUser = await getCurrentUser();
+    const currentUser = await getUser();
     const endpoint = `${baseUrl}/grouping/${groupingPath}/owners`;
     return getRequest<GroupingGroupMembers>(endpoint, currentUser.uid);
 };
@@ -179,7 +179,7 @@ export const groupingOwners = async (groupingPath: string): Promise<GroupingGrou
  * @returns The promise of the grouping paths or ApiError type
  */
 export const ownerGroupings = async (): Promise<GroupingPaths> => {
-    const currentUser = await getCurrentUser();
+    const currentUser = await getUser();
     const endpoint = `${baseUrl}/owners/${currentUser.uid}/groupings`;
     return getRequest<GroupingPaths>(endpoint, currentUser.uid);
 };
@@ -190,7 +190,7 @@ export const ownerGroupings = async (): Promise<GroupingPaths> => {
  * @returns The promise of the number of groupings or ApiError type
  */
 export const getNumberOfGroupings = async (): Promise<number> => {
-    const currentUser = await getCurrentUser();
+    const currentUser = await getUser();
     const endpoint = `${baseUrl}/owners/${currentUser.uid}/groupings/count`;
     return getRequest<number>(endpoint, currentUser.uid);
 };
@@ -204,7 +204,7 @@ export const getNumberOfGroupings = async (): Promise<number> => {
  * @returns The promise of true if uhIdentifier is the sole owner of a grouping or ApiError type
  */
 export const isSoleOwner = async (uhIdentifier: string, groupingPath: string): Promise<boolean & ApiError> => {
-    const currentUser = await getCurrentUser();
+    const currentUser = await getUser();
     const endpoint = `${baseUrl}/groupings/${groupingPath}/owners/${uhIdentifier}`;
     return getRequest<boolean>(endpoint, currentUser.uid);
 };
diff --git a/ui/src/lib/http-client.ts b/ui/src/lib/http-client.ts
index 3d6b2cd9..9adb8651 100644
--- a/ui/src/lib/http-client.ts
+++ b/ui/src/lib/http-client.ts
@@ -1,6 +1,6 @@
 import { ApiError } from './types';
-import { getCurrentUser } from '@/access/authentication';
 import { sendStackTrace } from './actions';
+import { getUser } from '@/lib/access/user';
 
 const maxRetries = 3;
 const baseUrl = process.env.NEXT_PUBLIC_API_2_1_BASE_URL as string;
@@ -34,7 +34,7 @@ const delay = async (ms = 5000) => new Promise((res) => setTimeout(res, ms));
  * @returns The promise of type T or ApiError type
  */
 const poll = async <T>(jobId: number): Promise<T & ApiError> => {
-    const currentUser = await getCurrentUser();
+    const currentUser = await getUser();
     return await fetch(`${baseUrl}/jobs/${jobId}`, { headers: { current_user: currentUser.uid } })
         .then((res) => handleFetch(res, HTTPMethod.GET))
         .then(async (res) => {
diff --git a/ui/src/middleware.ts b/ui/src/middleware.ts
index 6b538ac8..46674749 100644
--- a/ui/src/middleware.ts
+++ b/ui/src/middleware.ts
@@ -1,29 +1,28 @@
-import { cookies } from 'next/headers';
 import { NextResponse, NextRequest } from 'next/server';
-import { getIronSession } from 'iron-session';
-import { SessionData, SessionOptions } from '@/access/session';
-import Role from '@/access/role';
+import Role from '@/lib/access/role';
+import { AnonymousUser, getUser } from './lib/access/user';
 
 /**
  * Next.js middleware function that is called upon visiting a route that matches the config.
- * 
+ *
  * @param req - The request object
  */
 export const middleware = async (req: NextRequest) => {
-    const session = await getIronSession<SessionData>(cookies(), SessionOptions);
-    
-    const { user } = session;
-    if (!user) {
+    const currentUser = await getUser();
+    if (currentUser === AnonymousUser) {
         return NextResponse.redirect(new URL('/uhgroupings', req.url));
     }
-    if (req.url.endsWith('/admin') && !user.roles.includes(Role.ADMIN)) {
+    if (req.url.endsWith('/admin') && !currentUser.roles.includes(Role.ADMIN)) {
         return NextResponse.redirect(new URL('/uhgroupings', req.url));
     }
-    if (req.url.endsWith('/groupings') && !(user.roles.includes(Role.OWNER) || user.roles.includes(Role.ADMIN))) {
+    if (
+        req.url.endsWith('/groupings') &&
+        !(currentUser.roles.includes(Role.OWNER) || currentUser.roles.includes(Role.ADMIN))
+    ) {
         return NextResponse.redirect(new URL('/uhgroupings', req.url));
     }
 };
-  
+
 export const config = {
     matcher: ['/admin', '/memberships', '/groupings', '/feedback']
 };
diff --git a/ui/tests/access/authentication.test.ts b/ui/tests/access/authentication.test.ts
deleted file mode 100644
index 19c0478d..00000000
--- a/ui/tests/access/authentication.test.ts
+++ /dev/null
@@ -1,89 +0,0 @@
-import { getCurrentUser, login, logout, handleLogin, handleLogout } from '@/access/authentication';
-import { createMockSession } from '../setup-jest';
-import User, { AnonymousUser } from '@/access/user';
-import { redirect } from 'next/navigation';
-import IronSession from 'iron-session';
-
-const baseUrl = process.env.NEXT_PUBLIC_BASE_URL as string;
-const casUrl = process.env.NEXT_PUBLIC_CAS_URL as string;
-const testUser: User = JSON.parse(process.env.TEST_USER_A as string);
-const xmlSoapResponse = process.env.XML_SOAP_RESPONSE as string;
-
-describe('authentication', () => {
-
-    describe('getCurrentUser', () => {
-        
-        it('should return the currentUser', async () => {
-            jest.spyOn(IronSession, 'getIronSession').mockResolvedValue(createMockSession(testUser));
-
-            expect(await getCurrentUser()).toEqual(testUser);
-        });
-
-        it('should return an AnonymousUser when nothing is stored in the session', async () => {
-            jest.spyOn(IronSession, 'getIronSession').mockResolvedValue(createMockSession(undefined));
-
-            expect(await getCurrentUser()).toEqual(AnonymousUser);
-        });
-
-    });
-
-    describe('login', () => {
-
-        it('should visit the CAS login url', () => {
-            const casLoginUrl = `${casUrl}/login?service=${encodeURIComponent(`${baseUrl}/api/cas/login`)}`;
-            login();
-            expect(redirect).toHaveBeenCalledWith(casLoginUrl);
-        });
-
-    });
-
-    describe('logout', () => {
-
-        it('should visit the CAS logout url', async () => {
-            const casLogoutUrl = `${casUrl}/logout?service=${encodeURIComponent(`${baseUrl}/api/cas/logout`)}`;
-            logout();
-            expect(redirect).toHaveBeenCalledWith(casLogoutUrl);
-        });
-
-    });
-
-    describe('handleLogin', () => {
-
-        it('should return when ticket to validate is invalid', async () => {
-            fetchMock.mockAbort();
-            const getIronSessionSpy = jest.spyOn(IronSession, 'getIronSession');
-
-            await handleLogin('ticket');
-
-            expect(getIronSessionSpy).not.toHaveBeenCalled();
-        });
-
-        it('should save the user to the session', async () => {
-            fetchMock.mockResponse(xmlSoapResponse);
-
-            const session = createMockSession(testUser);
-            jest.spyOn(IronSession, 'getIronSession').mockResolvedValue(session);
-            const sessionSaveSpy = jest.spyOn(session, 'save');
-            
-            await handleLogin('ticket');
-
-            expect(sessionSaveSpy).toHaveBeenCalled();
-        });
-
-    });
-
-    describe('handleLogout', () => {
-
-        it('should destroy the session', async () => {
-            const session = createMockSession(testUser);
-            jest.spyOn(IronSession, 'getIronSession').mockResolvedValue(session);
-            const sessionDestroySpy = jest.spyOn(session, 'destroy');
-
-            await handleLogout();
-
-            expect(sessionDestroySpy).toHaveBeenCalled();
-        });
-
-    });
-
-});
diff --git a/ui/tests/access/saml-11-validator.test.ts b/ui/tests/access/saml-11-validator.test.ts
deleted file mode 100644
index 97dd313b..00000000
--- a/ui/tests/access/saml-11-validator.test.ts
+++ /dev/null
@@ -1,29 +0,0 @@
-import { validateTicket } from '@/access/saml-11-validator';
-import User, { AnonymousUser } from '@/access/user';
-
-const testUser: User = JSON.parse(process.env.TEST_USER_A as string);
-const xmlSoapResponse = process.env.XML_SOAP_RESPONSE as string;
-const xmlSoapResponseRequestDenied = process.env.XML_SOAP_RESPONSE_REQUEST_DENIED as string;
-
-describe('saml-11-validator', () => {
-
-    describe('validateTicket', () => {
-
-        it('should return the user on success', async () => {
-            fetchMock.mockResponse(xmlSoapResponse);
-            expect(await validateTicket('ticket')).toEqual(testUser);
-        });
-
-        it('should return an AnonymousUser on error', async () => {
-            fetchMock.mockAbort();
-            expect(await validateTicket('ticket')).toEqual(AnonymousUser);
-        });
-
-        it('should return an AnonymousUser on invalid ticket', async () => {
-            fetchMock.mockResponse(xmlSoapResponseRequestDenied);
-            expect(await validateTicket('ticket')).toEqual(AnonymousUser);
-        });
-
-    });
-
-});
diff --git a/ui/tests/access/user.test.ts b/ui/tests/access/user.test.ts
deleted file mode 100644
index 250dfa96..00000000
--- a/ui/tests/access/user.test.ts
+++ /dev/null
@@ -1,17 +0,0 @@
-import Role from '@/access/role';
-import { AnonymousUser } from '@/access/user';
-
-describe('user', () => {
-
-    describe('AnonymousUser', () => {
-        
-        it('should only have the Role ANONYMOUS', () => {
-            expect(AnonymousUser.roles.includes(Role.ANONYMOUS)).toBeTruthy();
-            expect(AnonymousUser.roles.includes(Role.UH)).toBeFalsy();
-            expect(AnonymousUser.roles.includes(Role.ADMIN)).toBeFalsy();
-            expect(AnonymousUser.roles.includes(Role.OWNER)).toBeFalsy();
-        });
-
-    });
-
-});
diff --git a/ui/tests/app/(home)/_components/after-login.test.tsx b/ui/tests/app/(home)/_components/after-login.test.tsx
index 3ebb5ad4..313ce8a0 100644
--- a/ui/tests/app/(home)/_components/after-login.test.tsx
+++ b/ui/tests/app/(home)/_components/after-login.test.tsx
@@ -1,12 +1,12 @@
-import Role from '@/access/role';
+import Role from '@/lib/access/role';
 import { render, screen } from '@testing-library/react';
-import User from '@/access/user';
+import User from '@/lib/access/user';
 import * as Fetchers from '@/lib/fetchers';
-import * as Authentication from '@/access/authentication';
+import * as NextCasClient from 'next-cas-client/app';
 import afterLogin from '@/app/(home)/_components/after-login';
 
 jest.mock('@/lib/fetchers');
-jest.mock('@/access/authentication');
+jest.mock('next-cas-client/app');
 
 const testUser: User = JSON.parse(process.env.TEST_USER_A as string);
 
@@ -105,7 +105,7 @@ describe('AfterLogin', () => {
     });
 
     it('Should render correctly when logged in as an admin', async () => {
-        jest.spyOn(Authentication, 'getCurrentUser').mockResolvedValue(admin);
+        jest.spyOn(NextCasClient, 'getCurrentUser').mockResolvedValue(admin);
         render(await afterLogin());
         expectWelcome(admin, 'Admin');
         expectAdministration(true);
@@ -114,7 +114,7 @@ describe('AfterLogin', () => {
     });
 
     it('Should render correctly when logged in as Owner', async () => {
-        jest.spyOn(Authentication, 'getCurrentUser').mockResolvedValue(owner);
+        jest.spyOn(NextCasClient, 'getCurrentUser').mockResolvedValue(owner);
         render(await afterLogin());
         expectWelcome(owner, 'Owner');
         expectAdministration(false);
@@ -123,7 +123,7 @@ describe('AfterLogin', () => {
     });
 
     it('Should render correctly when logged in as a user with a UH account', async () => {
-        jest.spyOn(Authentication, 'getCurrentUser').mockResolvedValue(uhUser);
+        jest.spyOn(NextCasClient, 'getCurrentUser').mockResolvedValue(uhUser);
         render(await afterLogin());
         expectWelcome(uhUser, 'Member');
         expectAdministration(false);
diff --git a/ui/tests/app/(home)/_components/login-button.test.tsx b/ui/tests/app/(home)/_components/login-button.test.tsx
index a2337e00..3f2e9882 100644
--- a/ui/tests/app/(home)/_components/login-button.test.tsx
+++ b/ui/tests/app/(home)/_components/login-button.test.tsx
@@ -1,14 +1,14 @@
-import { render, screen, waitFor } from '@testing-library/react';
+import { render, screen } from '@testing-library/react';
 import userEvent from '@testing-library/user-event';
-import { redirect } from 'next/navigation';
-import User, { AnonymousUser } from '@/access/user';
-import Role from '@/access/role';
+import User, { AnonymousUser } from '@/lib/access/user';
+import Role from '@/lib/access/role';
 import LoginButton from '@/app/(home)/_components/login-button';
+import * as NextCasClient from 'next-cas-client';
 
-const casUrl = process.env.NEXT_PUBLIC_CAS_URL as string;
-const baseUrl = process.env.NEXT_PUBLIC_BASE_URL as string;
 const testUser: User = JSON.parse(process.env.TEST_USER_A as string);
 
+jest.mock('next-cas-client');
+
 describe('LoginButton', () => {
     describe('User is not logged in', () => {
         it('should render a Login button', () => {
@@ -20,12 +20,8 @@ describe('LoginButton', () => {
         it('should visit the CAS login url on click', async () => {
             render(<LoginButton currentUser={AnonymousUser} />);
 
-            const casLoginUrl = `${casUrl}/login?service=${encodeURIComponent(`${baseUrl}/api/cas/login`)}`;
-            await waitFor(async () => {
-                await userEvent.click(screen.getByRole('button', { name: 'Login Here' }));
-            });
-
-            expect(redirect).toHaveBeenCalledWith(casLoginUrl);
+            await userEvent.click(screen.getByRole('button', { name: 'Login Here' }));
+            expect(NextCasClient.login).toHaveBeenCalled();
         });
     });
 
@@ -43,9 +39,8 @@ describe('LoginButton', () => {
         it('should visit the CAS logout url on click', async () => {
             render(<LoginButton currentUser={testUser} />);
 
-            const casLogoutUrl = `${casUrl}/logout?service=${encodeURIComponent(`${baseUrl}/api/cas/logout`)}`;
             await userEvent.click(screen.getByRole('button', { name: 'Logout' }));
-            expect(redirect).toHaveBeenCalledWith(casLogoutUrl);
+            expect(NextCasClient.logout).toHaveBeenCalled();
         });
     });
 });
diff --git a/ui/tests/app/api/cas/login/route.test.ts b/ui/tests/app/api/cas/login/route.test.ts
deleted file mode 100644
index b1e032f5..00000000
--- a/ui/tests/app/api/cas/login/route.test.ts
+++ /dev/null
@@ -1,24 +0,0 @@
-import { GET } from '@/app/api/cas/login/route';
-import { redirect } from 'next/navigation';
-import { handleLogin } from '@/access/authentication';
-import { NextRequest } from 'next/server';
-
-const baseUrl = process.env.NEXT_PUBLIC_BASE_URL as string;
-
-jest.mock('@/access/authentication');
-
-describe('/api/cas/login', () => {
-
-    const nextRequest = new NextRequest(new URL('/api/cas/login?ticket=ticket1', baseUrl));
-
-    it('should call handleLogin with ticket from search param', async () => {
-        await GET(nextRequest);
-        expect(handleLogin).toHaveBeenCalledWith('ticket1');
-    });
-
-    it('should redirect to the baseUrl', async () => {
-        await GET(nextRequest);
-        expect(redirect).toHaveBeenCalledWith(baseUrl);
-    });
-
-});
diff --git a/ui/tests/app/api/cas/logout/route.test.ts b/ui/tests/app/api/cas/logout/route.test.ts
deleted file mode 100644
index 22625174..00000000
--- a/ui/tests/app/api/cas/logout/route.test.ts
+++ /dev/null
@@ -1,21 +0,0 @@
-import { GET } from '@/app/api/cas/logout/route';
-import { redirect } from 'next/navigation';
-import { handleLogout } from '@/access/authentication';
-
-const baseUrl = process.env.NEXT_PUBLIC_BASE_URL as string;
-
-jest.mock('@/access/authentication');
-
-describe('/api/cas/logout', () => {
-
-    it('should call handleLogout', async () => {
-        await GET();
-        expect(handleLogout).toHaveBeenCalled();
-    });
-
-    it('should redirect to the baseUrl', async () => {
-        await GET();
-        expect(redirect).toHaveBeenCalledWith(baseUrl);
-    });
-
-});
diff --git a/ui/tests/app/feedback/_components/feedback-form.test.tsx b/ui/tests/app/feedback/_components/feedback-form.test.tsx
index 402aa6b5..f55120ed 100644
--- a/ui/tests/app/feedback/_components/feedback-form.test.tsx
+++ b/ui/tests/app/feedback/_components/feedback-form.test.tsx
@@ -1,7 +1,7 @@
 import { render, screen, waitFor } from '@testing-library/react';
 import userEvent from '@testing-library/user-event';
 import * as Actions from '@/lib/actions';
-import User from '@/access/user';
+import User from '@/lib/access/user';
 import FeedbackForm from '@/app/feedback/_components/feedback-form';
 
 jest.mock('@/lib/actions');
diff --git a/ui/tests/app/feedback/page.test.tsx b/ui/tests/app/feedback/page.test.tsx
index 4d141411..f9e9966c 100644
--- a/ui/tests/app/feedback/page.test.tsx
+++ b/ui/tests/app/feedback/page.test.tsx
@@ -1,15 +1,15 @@
 import { render, screen } from '@testing-library/react';
 import Feedback from '@/app/feedback/page';
-import * as Authentication from '@/access/authentication';
-import User from '@/access/user';
+import * as NextCasClient from 'next-cas-client/app';
+import User from '@/lib/access/user';
 
-jest.mock('@/access/authentication');
+jest.mock('next-cas-client/app');
 
 const testUser: User = JSON.parse(process.env.TEST_USER_A as string);
 
 describe('Feedback', () => {
     it('should render the Feedback form', async () => {
-        jest.spyOn(Authentication, 'getCurrentUser').mockResolvedValue(testUser);
+        jest.spyOn(NextCasClient, 'getCurrentUser').mockResolvedValue(testUser);
 
         render(await Feedback());
 
diff --git a/ui/tests/app/groupings/groupingPath/_components/description-form.test.tsx b/ui/tests/app/groupings/[groupingPath]/_components/description-form.test.tsx
similarity index 100%
rename from ui/tests/app/groupings/groupingPath/_components/description-form.test.tsx
rename to ui/tests/app/groupings/[groupingPath]/_components/description-form.test.tsx
diff --git a/ui/tests/app/groupings/groupingPath/_components/export-dropdown.test.tsx b/ui/tests/app/groupings/[groupingPath]/_components/export-dropdown.test.tsx
similarity index 100%
rename from ui/tests/app/groupings/groupingPath/_components/export-dropdown.test.tsx
rename to ui/tests/app/groupings/[groupingPath]/_components/export-dropdown.test.tsx
diff --git a/ui/tests/app/groupings/groupingPath/_components/grouping-header.test.tsx b/ui/tests/app/groupings/[groupingPath]/_components/grouping-header.test.tsx
similarity index 100%
rename from ui/tests/app/groupings/groupingPath/_components/grouping-header.test.tsx
rename to ui/tests/app/groupings/[groupingPath]/_components/grouping-header.test.tsx
diff --git a/ui/tests/app/groupings/groupingPath/_components/return-buttons.test.tsx b/ui/tests/app/groupings/[groupingPath]/_components/return-buttons.test.tsx
similarity index 100%
rename from ui/tests/app/groupings/groupingPath/_components/return-buttons.test.tsx
rename to ui/tests/app/groupings/[groupingPath]/_components/return-buttons.test.tsx
diff --git a/ui/tests/app/groupings/groupingPath/_components/side-nav.test.tsx b/ui/tests/app/groupings/[groupingPath]/_components/side-nav.test.tsx
similarity index 97%
rename from ui/tests/app/groupings/groupingPath/_components/side-nav.test.tsx
rename to ui/tests/app/groupings/[groupingPath]/_components/side-nav.test.tsx
index 828b68ae..49f8b805 100644
--- a/ui/tests/app/groupings/groupingPath/_components/side-nav.test.tsx
+++ b/ui/tests/app/groupings/[groupingPath]/_components/side-nav.test.tsx
@@ -2,6 +2,8 @@ import { render, screen } from '@testing-library/react';
 import SideNav from '@/app/groupings/[groupingPath]/_components/side-nav';
 import { usePathname } from 'next/navigation';
 
+jest.mock('next/navigation');
+
 describe('SideNav Component', () => {
     const groupingPath = 'test-grouping';
 
diff --git a/ui/tests/app/groupings/groupingPath/layout.test.tsx b/ui/tests/app/groupings/[groupingPath]/layout.test.tsx
similarity index 98%
rename from ui/tests/app/groupings/groupingPath/layout.test.tsx
rename to ui/tests/app/groupings/[groupingPath]/layout.test.tsx
index 886454d9..1691ad55 100644
--- a/ui/tests/app/groupings/groupingPath/layout.test.tsx
+++ b/ui/tests/app/groupings/[groupingPath]/layout.test.tsx
@@ -5,6 +5,7 @@ import { usePathname } from 'next/navigation';
 import { GroupingDescription } from '@/lib/types';
 import GroupingHeader from '@/app/groupings/[groupingPath]/_components/grouping-header';
 
+jest.mock('next/navigation');
 jest.mock('@/lib/fetchers');
 jest.mock('@/app/groupings/[groupingPath]/_components/grouping-header');
 
diff --git a/ui/tests/app/groupings/groupingPath/tab/actions/page.test.tsx b/ui/tests/app/groupings/[groupingPath]/tab/actions/page.test.tsx
similarity index 100%
rename from ui/tests/app/groupings/groupingPath/tab/actions/page.test.tsx
rename to ui/tests/app/groupings/[groupingPath]/tab/actions/page.test.tsx
diff --git a/ui/tests/app/groupings/groupingPath/tab/all-members/page.test.tsx b/ui/tests/app/groupings/[groupingPath]/tab/all-members/page.test.tsx
similarity index 100%
rename from ui/tests/app/groupings/groupingPath/tab/all-members/page.test.tsx
rename to ui/tests/app/groupings/[groupingPath]/tab/all-members/page.test.tsx
diff --git a/ui/tests/app/groupings/groupingPath/tab/basis/page.test.tsx b/ui/tests/app/groupings/[groupingPath]/tab/basis/page.test.tsx
similarity index 100%
rename from ui/tests/app/groupings/groupingPath/tab/basis/page.test.tsx
rename to ui/tests/app/groupings/[groupingPath]/tab/basis/page.test.tsx
diff --git a/ui/tests/app/groupings/groupingPath/tab/exclude/page.test.tsx b/ui/tests/app/groupings/[groupingPath]/tab/exclude/page.test.tsx
similarity index 100%
rename from ui/tests/app/groupings/groupingPath/tab/exclude/page.test.tsx
rename to ui/tests/app/groupings/[groupingPath]/tab/exclude/page.test.tsx
diff --git a/ui/tests/app/groupings/groupingPath/tab/include/page.test.tsx b/ui/tests/app/groupings/[groupingPath]/tab/include/page.test.tsx
similarity index 100%
rename from ui/tests/app/groupings/groupingPath/tab/include/page.test.tsx
rename to ui/tests/app/groupings/[groupingPath]/tab/include/page.test.tsx
diff --git a/ui/tests/app/groupings/groupingPath/tab/layout.test.tsx b/ui/tests/app/groupings/[groupingPath]/tab/layout.test.tsx
similarity index 100%
rename from ui/tests/app/groupings/groupingPath/tab/layout.test.tsx
rename to ui/tests/app/groupings/[groupingPath]/tab/layout.test.tsx
diff --git a/ui/tests/app/groupings/groupingPath/tab/owners/page.test.tsx b/ui/tests/app/groupings/[groupingPath]/tab/owners/page.test.tsx
similarity index 100%
rename from ui/tests/app/groupings/groupingPath/tab/owners/page.test.tsx
rename to ui/tests/app/groupings/[groupingPath]/tab/owners/page.test.tsx
diff --git a/ui/tests/app/groupings/groupingPath/tab/preferences/page.test.tsx b/ui/tests/app/groupings/[groupingPath]/tab/preferences/page.test.tsx
similarity index 100%
rename from ui/tests/app/groupings/groupingPath/tab/preferences/page.test.tsx
rename to ui/tests/app/groupings/[groupingPath]/tab/preferences/page.test.tsx
diff --git a/ui/tests/app/groupings/groupingPath/tab/sync-destinations/page.test.tsx b/ui/tests/app/groupings/[groupingPath]/tab/sync-destinations/page.test.tsx
similarity index 100%
rename from ui/tests/app/groupings/groupingPath/tab/sync-destinations/page.test.tsx
rename to ui/tests/app/groupings/[groupingPath]/tab/sync-destinations/page.test.tsx
diff --git a/ui/tests/components/layout/navbar/login-button.test.tsx b/ui/tests/components/layout/navbar/login-button.test.tsx
index 8345dc87..78dc27b5 100644
--- a/ui/tests/components/layout/navbar/login-button.test.tsx
+++ b/ui/tests/components/layout/navbar/login-button.test.tsx
@@ -1,28 +1,27 @@
 import { render, screen } from '@testing-library/react';
 import userEvent from '@testing-library/user-event';
 import Login from '@/components/layout/navbar/login-button';
-import { redirect } from 'next/navigation';
-import User, { AnonymousUser } from '@/access/user';
-import Role from '@/access/role';
+import User, { AnonymousUser } from '@/lib/access/user';
+import Role from '@/lib/access/role';
+import * as NextCasClient from 'next-cas-client';
 
-const casUrl = process.env.NEXT_PUBLIC_CAS_URL as string;
-const baseUrl = process.env.NEXT_PUBLIC_BASE_URL as string;
 const testUser: User = JSON.parse(process.env.TEST_USER_A as string);
 
+jest.mock('next-cas-client');
+
 describe('Login', () => {
     describe('User is not logged in', () => {
         it('should render a Login button', () => {
             render(<Login currentUser={AnonymousUser} />);
 
-            expect(screen.getByRole('button', { name: 'Login' })).toBeInTheDocument;
+            expect(screen.getByRole('button', { name: 'Login' })).toBeInTheDocument();
         });
 
         it('should visit the CAS login url on click', async () => {
             render(<Login currentUser={AnonymousUser} />);
 
-            const casLoginUrl = `${casUrl}/login?service=${encodeURIComponent(`${baseUrl}/api/cas/login`)}`;
             await userEvent.click(screen.getByRole('button', { name: 'Login' }));
-            expect(redirect).toHaveBeenCalledWith(casLoginUrl);
+            expect(NextCasClient.login).toHaveBeenCalled();
         });
     });
 
@@ -40,9 +39,8 @@ describe('Login', () => {
         it('should visit the CAS logout url on click', async () => {
             render(<Login currentUser={testUser} />);
 
-            const casLogoutUrl = `${casUrl}/logout?service=${encodeURIComponent(`${baseUrl}/api/cas/logout`)}`;
             await userEvent.click(screen.getByRole('button', { name: `Logout (${testUser.uid})` }));
-            expect(redirect).toHaveBeenCalledWith(casLogoutUrl);
+            expect(NextCasClient.logout).toHaveBeenCalled();
         });
     });
 });
diff --git a/ui/tests/components/layout/navbar/navbar-menu.test.tsx b/ui/tests/components/layout/navbar/navbar-menu.test.tsx
index c8011b96..7ece65b4 100644
--- a/ui/tests/components/layout/navbar/navbar-menu.test.tsx
+++ b/ui/tests/components/layout/navbar/navbar-menu.test.tsx
@@ -1,5 +1,5 @@
-import Role from '@/access/role';
-import User, { AnonymousUser } from '@/access/user';
+import Role from '@/lib/access/role';
+import User, { AnonymousUser } from '@/lib/access/user';
 import NavbarMenu from '@/components/layout/navbar/navbar-menu';
 import { fireEvent, render, screen } from '@testing-library/react';
 
diff --git a/ui/tests/components/layout/navbar/navbar.test.tsx b/ui/tests/components/layout/navbar/navbar.test.tsx
index 1aea1aec..5fab47d7 100644
--- a/ui/tests/components/layout/navbar/navbar.test.tsx
+++ b/ui/tests/components/layout/navbar/navbar.test.tsx
@@ -1,17 +1,17 @@
-import User, { AnonymousUser } from '@/access/user';
-import * as Authentication from '@/access/authentication';
+import User, { AnonymousUser } from '@/lib/access/user';
+import * as NextCasClient from 'next-cas-client/app';
 import { render, screen } from '@testing-library/react';
 import Navbar from '@/components/layout/navbar/navbar';
-import Role from '@/access/role';
+import Role from '@/lib/access/role';
 
 const testUser: User = JSON.parse(process.env.TEST_USER_A as string);
 
-jest.mock('@/access/authentication');
+jest.mock('next-cas-client/app');
 
 describe('Navbar', () => {
     describe('User is logged-out', () => {
         it('should render the navbar with only the link to /about', async () => {
-            jest.spyOn(Authentication, 'getCurrentUser').mockResolvedValue(AnonymousUser);
+            jest.spyOn(NextCasClient, 'getCurrentUser').mockResolvedValue(AnonymousUser);
             render(await Navbar());
 
             expect(screen.getByRole('navigation')).toBeInTheDocument();
@@ -36,7 +36,7 @@ describe('Navbar', () => {
 
         it('should render only /memberships, /about, /feedback for the average user', async () => {
             testUser.roles.push(Role.UH);
-            jest.spyOn(Authentication, 'getCurrentUser').mockResolvedValue(testUser);
+            jest.spyOn(NextCasClient, 'getCurrentUser').mockResolvedValue(testUser);
             render(await Navbar());
 
             expect(screen.getByRole('navigation')).toBeInTheDocument();
@@ -55,7 +55,7 @@ describe('Navbar', () => {
 
         it('should render only /memberships, /groupings, /about, /feedback for an owner of a grouping', async () => {
             testUser.roles.push(Role.OWNER, Role.UH);
-            jest.spyOn(Authentication, 'getCurrentUser').mockResolvedValue(testUser);
+            jest.spyOn(NextCasClient, 'getCurrentUser').mockResolvedValue(testUser);
             render(await Navbar());
 
             expect(screen.getByRole('navigation')).toBeInTheDocument();
@@ -74,7 +74,7 @@ describe('Navbar', () => {
 
         it('should render all links for an Admin', async () => {
             testUser.roles.push(Role.ADMIN, Role.UH);
-            jest.spyOn(Authentication, 'getCurrentUser').mockResolvedValue(testUser);
+            jest.spyOn(NextCasClient, 'getCurrentUser').mockResolvedValue(testUser);
             render(await Navbar());
 
             expect(screen.getByRole('navigation')).toBeInTheDocument();
diff --git a/ui/tests/app/_components/modal/api-error-modal.test.tsx b/ui/tests/components/modal/api-error-modal.test.tsx
similarity index 98%
rename from ui/tests/app/_components/modal/api-error-modal.test.tsx
rename to ui/tests/components/modal/api-error-modal.test.tsx
index 77ea79d9..6d4fbdbd 100644
--- a/ui/tests/app/_components/modal/api-error-modal.test.tsx
+++ b/ui/tests/components/modal/api-error-modal.test.tsx
@@ -1,8 +1,6 @@
 import { fireEvent, render, screen } from '@testing-library/react';
 import ApiErrorModal from '@/components/modal/api-error-modal';
 
-jest.mock('@/access/authentication');
-
 describe('ApiErrorModal', () => {
     it('should open the API Error modal', () => {
         render(<ApiErrorModal open={true} />);
diff --git a/ui/tests/components/modal/timeout-modal.test.tsx b/ui/tests/components/modal/timeout-modal.test.tsx
index 506c60fa..399c7fc1 100644
--- a/ui/tests/components/modal/timeout-modal.test.tsx
+++ b/ui/tests/components/modal/timeout-modal.test.tsx
@@ -1,12 +1,12 @@
-import Role from '@/access/role';
-import User from '@/access/user';
+import Role from '@/lib/access/role';
+import User from '@/lib/access/user';
 import TimeoutModal from '@/components/modal/timeout-modal';
 import { act, fireEvent, render, screen } from '@testing-library/react';
-import * as Authentication from '@/access/authentication';
+import * as NextCasClient from 'next-cas-client';
 
 const testUser: User = JSON.parse(process.env.TEST_USER_A as string);
 
-jest.mock('@/access/authentication');
+jest.mock('next-cas-client');
 
 describe('TimeoutModal', () => {
     beforeEach(() => {
@@ -81,7 +81,7 @@ describe('TimeoutModal', () => {
     });
 
     it('should logout when "Log off now" is pressed', () => {
-        const logoutSpy = jest.spyOn(Authentication, 'logout');
+        const logoutSpy = jest.spyOn(NextCasClient, 'logout');
 
         testUser.roles.push(Role.UH);
         render(<TimeoutModal currentUser={testUser} />);
@@ -95,7 +95,7 @@ describe('TimeoutModal', () => {
     });
 
     it('should logout after 30 minutes of idle', () => {
-        const logoutSpy = jest.spyOn(Authentication, 'logout');
+        const logoutSpy = jest.spyOn(NextCasClient, 'logout');
 
         testUser.roles.push(Role.UH);
         render(<TimeoutModal currentUser={testUser} />);
diff --git a/ui/tests/access/authorization.test.ts b/ui/tests/lib/access/authorization.test.ts
similarity index 86%
rename from ui/tests/access/authorization.test.ts
rename to ui/tests/lib/access/authorization.test.ts
index 579cc4fa..cbc7da16 100644
--- a/ui/tests/access/authorization.test.ts
+++ b/ui/tests/lib/access/authorization.test.ts
@@ -1,13 +1,11 @@
-import { setRoles } from '@/access/authorization';
-import Role from '@/access/role';
-import User, { AnonymousUser } from '@/access/user';
+import { setRoles } from '@/lib/access/authorization';
+import Role from '@/lib/access/role';
+import User, { AnonymousUser } from '@/lib/access/user';
 
 const testUser: User = JSON.parse(process.env.TEST_USER_A as string);
 
 describe('authorization', () => {
-    
     describe('setRoles', () => {
-
         afterEach(() => {
             AnonymousUser.roles = [];
             testUser.roles = [];
@@ -15,7 +13,7 @@ describe('authorization', () => {
 
         it('should set the ANONYMOUS role', async () => {
             fetchMock
-                .mockResponseOnce(JSON.stringify(false))  // isOwner
+                .mockResponseOnce(JSON.stringify(false)) // isOwner
                 .mockResponseOnce(JSON.stringify(false)); // isAdmin
 
             await setRoles(AnonymousUser);
@@ -27,7 +25,7 @@ describe('authorization', () => {
 
         it('should set the UH role', async () => {
             fetchMock
-                .mockResponseOnce(JSON.stringify(false))  // isOwner
+                .mockResponseOnce(JSON.stringify(false)) // isOwner
                 .mockResponseOnce(JSON.stringify(false)); // isAdmin
 
             await setRoles(testUser);
@@ -39,7 +37,7 @@ describe('authorization', () => {
 
         it('should set the UH and ADMIN roles', async () => {
             fetchMock
-                .mockResponseOnce(JSON.stringify(false))  // isOwner
+                .mockResponseOnce(JSON.stringify(false)) // isOwner
                 .mockResponseOnce(JSON.stringify(true)); // isAdmin
 
             await setRoles(testUser);
@@ -51,7 +49,7 @@ describe('authorization', () => {
 
         it('should set the UH and OWNER roles', async () => {
             fetchMock
-                .mockResponseOnce(JSON.stringify(true))  // isOwner
+                .mockResponseOnce(JSON.stringify(true)) // isOwner
                 .mockResponseOnce(JSON.stringify(false)); // isAdmin
 
             await setRoles(testUser);
@@ -63,7 +61,7 @@ describe('authorization', () => {
 
         it('should set the UH, ADMIN, and OWNER roles', async () => {
             fetchMock
-                .mockResponseOnce(JSON.stringify(true))  // isOwner
+                .mockResponseOnce(JSON.stringify(true)) // isOwner
                 .mockResponseOnce(JSON.stringify(true)); // isAdmin
 
             await setRoles(testUser);
@@ -82,7 +80,5 @@ describe('authorization', () => {
             expect(testUser.roles.includes(Role.OWNER)).toBeFalsy();
             expect(testUser.roles.includes(Role.UH)).toBeTruthy();
         });
-
     });
-
 });
diff --git a/ui/tests/access/role.test.ts b/ui/tests/lib/access/role.test.ts
similarity index 83%
rename from ui/tests/access/role.test.ts
rename to ui/tests/lib/access/role.test.ts
index b5202622..d43245b0 100644
--- a/ui/tests/access/role.test.ts
+++ b/ui/tests/lib/access/role.test.ts
@@ -1,11 +1,9 @@
-import Role from '@/access/role';
+import Role from '@/lib/access/role';
 
 describe('role', () => {
-
     it('should have the same key and value', () => {
         for (const [key, value] of Object.entries(Role)) {
             expect(key).toBe(value);
         }
     });
-
 });
diff --git a/ui/tests/lib/access/user.test.ts b/ui/tests/lib/access/user.test.ts
new file mode 100644
index 00000000..fc9f3645
--- /dev/null
+++ b/ui/tests/lib/access/user.test.ts
@@ -0,0 +1,47 @@
+import Role from '@/lib/access/role';
+import User, { AnonymousUser, getUser, loadUser } from '@/lib/access/user';
+import * as NextCasClient from 'next-cas-client/app';
+
+const testUser: User = JSON.parse(process.env.TEST_USER_A as string);
+
+jest.mock('next-cas-client/app');
+
+describe('user', () => {
+    describe('loadUser', () => {
+        testUser.roles = [Role.ANONYMOUS, Role.UH];
+        const casUser = {
+            user: 'testiwta',
+            attributes: {
+                cn: 'Testf-iwt-a TestIAM-staff',
+                givenName: 'Testf-iwt-a',
+                sn: 'TestIAM-staff',
+                uid: 'testiwta',
+                uhUuid: '99997010'
+            }
+        };
+
+        it('should return a User', async () => {
+            fetchMock
+                .mockResponseOnce(JSON.stringify(false)) // isOwner
+                .mockResponseOnce(JSON.stringify(false)); // isAdmin
+
+            expect(await loadUser(casUser)).toEqual(testUser);
+        });
+    });
+
+    describe('getUser', () => {
+        it('should call getCurrentUser', async () => {
+            jest.spyOn(NextCasClient, 'getCurrentUser').mockResolvedValue(testUser);
+
+            expect(await getUser()).toEqual(testUser);
+            expect(NextCasClient.getCurrentUser).toHaveBeenCalled();
+        });
+
+        it('should return an AnonymousUser if getCurrentUser is null', async () => {
+            jest.spyOn(NextCasClient, 'getCurrentUser').mockResolvedValue(null);
+
+            expect(await getUser()).toEqual(AnonymousUser);
+            expect(NextCasClient.getCurrentUser).toHaveBeenCalled();
+        });
+    });
+});
diff --git a/ui/tests/lib/actions.test.ts b/ui/tests/lib/actions.test.ts
index 0decbbb3..c908d454 100644
--- a/ui/tests/lib/actions.test.ts
+++ b/ui/tests/lib/actions.test.ts
@@ -22,14 +22,14 @@ import {
     sendStackTrace,
     updateDescription
 } from '@/lib/actions';
-import * as Authentication from '@/access/authentication';
-import User from '@/access/user';
+import * as NextCasClient from 'next-cas-client/app';
+import User from '@/lib/access/user';
 import { Feedback } from '@/lib/types';
 
 const baseUrl = process.env.NEXT_PUBLIC_API_2_1_BASE_URL as string;
 const testUser: User = JSON.parse(process.env.TEST_USER_A as string);
 
-jest.mock('@/access/authentication');
+jest.mock('next-cas-client/app');
 
 describe('actions', () => {
     const currentUser = testUser;
@@ -61,7 +61,7 @@ describe('actions', () => {
     };
 
     beforeAll(() => {
-        jest.spyOn(Authentication, 'getCurrentUser').mockResolvedValue(testUser);
+        jest.spyOn(NextCasClient, 'getCurrentUser').mockResolvedValue(testUser);
     });
 
     describe('updateDescription', () => {
diff --git a/ui/tests/lib/fetchers.test.ts b/ui/tests/lib/fetchers.test.ts
index 6ea82ae5..ae069236 100644
--- a/ui/tests/lib/fetchers.test.ts
+++ b/ui/tests/lib/fetchers.test.ts
@@ -1,4 +1,4 @@
-import User from '@/access/user';
+import User from '@/lib/access/user';
 import {
     getAllGroupings,
     getAnnouncements,
@@ -16,13 +16,13 @@ import {
     ownedGrouping,
     ownerGroupings
 } from '@/lib/fetchers';
-import * as Authentication from '@/access/authentication';
+import * as NextCasClient from 'next-cas-client/app';
 import * as Actions from '@/lib/actions';
 
 const baseUrl = process.env.NEXT_PUBLIC_API_2_1_BASE_URL as string;
 const testUser: User = JSON.parse(process.env.TEST_USER_A as string);
 
-jest.mock('@/access/authentication');
+jest.mock('next-cas-client/app');
 jest.mock('@/lib/actions');
 
 describe('fetchers', () => {
@@ -45,7 +45,7 @@ describe('fetchers', () => {
     };
 
     beforeAll(() => {
-        jest.spyOn(Authentication, 'getCurrentUser').mockResolvedValue(testUser);
+        jest.spyOn(NextCasClient, 'getCurrentUser').mockResolvedValue(testUser);
         jest.spyOn(Actions, 'sendStackTrace');
     });
 
diff --git a/ui/tests/middleware.test.tsx b/ui/tests/middleware.test.tsx
index 51d74916..9c5830c9 100644
--- a/ui/tests/middleware.test.tsx
+++ b/ui/tests/middleware.test.tsx
@@ -1,22 +1,21 @@
 import { config, middleware } from '@/middleware';
-import { createMockSession } from './setup-jest';
 import { NextRequest, NextResponse } from 'next/server';
-import IronSession from 'iron-session';
-import User, { AnonymousUser } from '@/access/user';
-import Role from '@/access/role';
+import User from '@/lib/access/user';
+import Role from '@/lib/access/role';
+import * as NextCasClient from 'next-cas-client/app';
 
 const baseUrl = process.env.NEXT_PUBLIC_BASE_URL as string;
 const testUser: User = JSON.parse(process.env.TEST_USER_A as string);
 
-describe('middleware', () => {
+jest.mock('next-cas-client/app');
 
+describe('middleware', () => {
     it('should define the config with a list of matching paths', () => {
         expect(config).toBeDefined();
         expect(config.matcher).toBeDefined();
     });
 
     describe('User is logged-out', () => {
-
         it('should redirect the user', async () => {
             const redirectSpy = jest.spyOn(NextResponse, 'redirect');
 
@@ -24,25 +23,19 @@ describe('middleware', () => {
                 const url = baseUrl + matcher;
                 const req = new NextRequest(new Request(url));
 
-                jest.spyOn(IronSession, 'getIronSession').mockResolvedValue(createMockSession(undefined));
-                await middleware(req);
-                expect(redirectSpy).toHaveBeenCalledWith(new URL(baseUrl));
-
-                jest.spyOn(IronSession, 'getIronSession').mockResolvedValue(createMockSession(AnonymousUser));
+                jest.spyOn(NextCasClient, 'getCurrentUser').mockResolvedValue(null);
                 await middleware(req);
                 expect(redirectSpy).toHaveBeenCalledWith(new URL(baseUrl));
 
                 redirectSpy.mockClear();
             }
         });
-
     });
 
     describe('User is logged-in', () => {
-
         afterEach(() => {
             testUser.roles = [];
-        })
+        });
 
         it('should redirect the average user at /admin and /groupings', async () => {
             testUser.roles.push(Role.UH);
@@ -52,7 +45,7 @@ describe('middleware', () => {
                 const url = baseUrl + matcher;
                 const req = new NextRequest(new Request(url));
 
-                jest.spyOn(IronSession, 'getIronSession').mockResolvedValue(createMockSession(testUser));
+                jest.spyOn(NextCasClient, 'getCurrentUser').mockResolvedValue(testUser);
                 await middleware(req);
 
                 if (matcher === '/admin' || matcher === '/groupings') {
@@ -73,7 +66,7 @@ describe('middleware', () => {
                 const url = baseUrl + matcher;
                 const req = new NextRequest(new Request(url));
 
-                jest.spyOn(IronSession, 'getIronSession').mockResolvedValue(createMockSession(testUser));
+                jest.spyOn(NextCasClient, 'getCurrentUser').mockResolvedValue(testUser);
                 await middleware(req);
 
                 if (matcher === '/admin') {
@@ -94,14 +87,12 @@ describe('middleware', () => {
                 const url = baseUrl + matcher;
                 const req = new NextRequest(new Request(url));
 
-                jest.spyOn(IronSession, 'getIronSession').mockResolvedValue(createMockSession(testUser));
+                jest.spyOn(NextCasClient, 'getCurrentUser').mockResolvedValue(testUser);
                 await middleware(req);
 
                 expect(redirectSpy).not.toHaveBeenCalled();
                 redirectSpy.mockClear();
             }
         });
-
     });
-
 });
diff --git a/ui/tests/setup-jest.ts b/ui/tests/setup-jest.ts
index b11b4b4a..cba98a72 100644
--- a/ui/tests/setup-jest.ts
+++ b/ui/tests/setup-jest.ts
@@ -1,7 +1,7 @@
 import '@testing-library/jest-dom';
 import { loadEnvConfig } from '@next/env';
 import { enableFetchMocks } from 'jest-fetch-mock';
-import User from '@/access/user';
+import User from '@/lib/access/user';
 
 enableFetchMocks();
 loadEnvConfig(process.cwd());
diff --git a/ui/tsconfig.json b/ui/tsconfig.json
index 9bb90ae6..68bce00b 100644
--- a/ui/tsconfig.json
+++ b/ui/tsconfig.json
@@ -1,26 +1,26 @@
 {
-  "compilerOptions": {
-    "lib": ["dom", "dom.iterable", "esnext"],
-    "allowJs": true,
-    "skipLibCheck": true,
-    "strict": true,
-    "noEmit": true,
-    "esModuleInterop": true,
-    "module": "esnext",
-    "moduleResolution": "node",
-    "resolveJsonModule": true,
-    "isolatedModules": true,
-    "jsx": "preserve",
-    "incremental": true,
-    "plugins": [
-      {
-        "name": "next"
-      }
-    ],
-    "paths": {
-      "@/*": ["./src/*"]
-    }
-  },
-  "include": ["next-env.d.ts", "**/*.ts", "**/*.tsx", ".next/types/**/*.ts"],
-  "exclude": ["node_modules"]
+    "compilerOptions": {
+        "lib": ["dom", "dom.iterable", "esnext"],
+        "allowJs": true,
+        "skipLibCheck": true,
+        "strict": true,
+        "noEmit": true,
+        "esModuleInterop": true,
+        "module": "esnext",
+        "moduleResolution": "bundler",
+        "resolveJsonModule": true,
+        "isolatedModules": true,
+        "jsx": "preserve",
+        "incremental": true,
+        "plugins": [
+            {
+                "name": "next"
+            }
+        ],
+        "paths": {
+            "@/*": ["./src/*"]
+        }
+    },
+    "include": ["next-env.d.ts", "**/*.ts", "**/*.tsx", ".next/types/**/*.ts"],
+    "exclude": ["node_modules"]
 }