Never mind. I guessed around and found that I had to set these. cas.webflow.signing.key=<long key> cas.webflow.signing.keySize=512 cas.webflow.encryption.keySize=16 cas.webflow.encryption.key=<short key> cas.webflow.alg=AES
~ Bob On Thursday, August 17, 2017 at 4:16:26 PM UTC-5, Bob Dill wrote: > > Hi All, > > I've been working for the last couple of hours trying to resolve a problem > I'm having with SSO. Inside the log, I'm getting the followng messages. > > 2017-08-17 16:06:03,688 WARN > [org.apereo.cas.config.CasCoreTicketsConfiguration] - <Runtime memory is > used as the persistence storage for retrieving and managing tickets. > Tickets that are issued during runtime will be LOST upon container > restarts. This MAY impact SSO functionality.> > 2017-08-17 16:06:10,889 WARN > [org.apereo.cas.config.JsonServiceRegistryConfiguration] - <The location of > service definitions [class path resource [services]] is on the classpath. > It is recommended that the location of service definitions be externalized > to allow for easier modifications and better sharing of the configuration.> > 2017-08-17 16:06:16,959 WARN > [org.apereo.cas.config.CasCoreServicesConfiguration] - <Runtime memory is > used as the persistence storage for retrieving and persisting service > definitions. Changes that are made to service definitions during runtime > WILL be LOST upon container restarts.> > 2017-08-17 16:06:17,627 WARN > [org.apereo.cas.util.cipher.BaseBinaryCipherExecutor] - <Secret key for > signing is not defined. CAS will attempt to auto-generate the signing key> > 2017-08-17 16:06:17,628 WARN > [org.apereo.cas.util.cipher.BaseBinaryCipherExecutor] - <Generated signing > key > [3pIKmpeB_Jp8TlJjPYpztmokMosTY2KCJHmsBNUiyHTqOZptJOm5frEoObc3oYsRLdzTMAQw9Az5u9HWIsLh7A] > > of size [512]. The generated key MUST be added to CAS settings.> > 2017-08-17 16:06:17,629 WARN > [org.apereo.cas.util.cipher.BaseBinaryCipherExecutor] - <No encryption key > is defined. CAS will attempt to auto-generate keys> > 2017-08-17 16:06:17,629 WARN > [org.apereo.cas.util.cipher.BaseBinaryCipherExecutor] - <Generated > encryption key [dowykNbnHjRYVswF] of size [16]. The generated key MUST be > added to CAS settings.> > 2017-08-17 16:06:21,447 WARN > [org.apache.catalina.util.SessionIdGeneratorBase] - <Creation of > SecureRandom instance for session ID generation using [SHA1PRNG] took > [3,730] milliseconds.> > > At first I was also getting a complaint about undefined keys for > Ticket-granting tickets, but I resolved this by setting the properties > cas.tgc.signingKey=<some long auto-generated value> > cas.tgc.encryptionKey=<some long auto-generated> > > I know that I can get rid of this complaint if I only knew what property > to set. I tried setting. > cas.ticket.security.encryptionKey=<generated value> > cas.ticket.security.signingKey=<some long generated value> > > Setting those properties does not seem to work, and the official > documentation doesn't give the property. It suggest that I look at all the > properties, and there are tens of keys to try. Yay! > > Anyone know the property? This installation is brand new with practically > no customizations at this point. All I have done is added support for LDAP, > and JSON Service Registry to mypom.xml file. > -- - CAS gitter chatroom: https://gitter.im/apereo/cas - CAS mailing list guidelines: https://apereo.github.io/cas/Mailing-Lists.html - CAS documentation website: https://apereo.github.io/cas - CAS project website: https://github.com/apereo/cas --- You received this message because you are subscribed to the Google Groups "CAS Community" group. To unsubscribe from this group and stop receiving emails from it, send an email to cas-user+unsubscr...@apereo.org. To view this discussion on the web visit https://groups.google.com/a/apereo.org/d/msgid/cas-user/8f396b00-7ec3-4db9-88f2-d8b939f285fb%40apereo.org.
