On Tue, Aug 18, 2020 at 8:12 AM Julien Sabatier <[email protected]> wrote:
> I'm trying to setup a CAS 6.2.1 with CAS Management for manage services.
>
> Actually I have a 6.2.1-SNAPSHOT CAS Management which start up well.
>
> At the first load, it redirect me to CAS login page, where I use my
> login/password.
> After, i get the message : "authorizationFailure"
>
> And in the log it appear thar the user roles are empty :
>
> WARN [org.apereo.cas.mgmt.authz.CasRoleBasedAuthorizer] - Unable to
> authorize access, since the authenticated profile [#CasProfile# | id:
> julien.sabatier | attributes: {credentialType=UsernamePasswordCredential,
> isFromNewLogin=true, authenticationDate=2020-08-18T08:07:35.737859Z,
> authenticationMethod=LdapAuthenticationHandler,
> successfulAuthenticationHandlers=LdapAuthenticationHandler,
> longTermAuthenticationRequestTokenUsed=false} | roles: [] | permissions: []
> | isRemembered: false | clientName: CasClient | linkedId: null |] does not
> contain any required roles
>
> I want to use LDAP for managing auth.
> I have a role : cn=ADMINISTRATOR,ou=roles,dc=lepuyenvelay,dc=fr
> And my user is a member of this groupOfMember
>
Can you put org.ldaptive in DEBUG to confirm the groupOfMember query is
happening?
--Daniel Fisher
--
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines: https://goo.gl/1VRrw7
- Contributions: https://goo.gl/mh7qDG
---
You received this message because you are subscribed to the Google Groups "CAS
Community" group.
To unsubscribe from this group and stop receiving emails from it, send an email
to [email protected].
To view this discussion on the web visit
https://groups.google.com/a/apereo.org/d/msgid/cas-user/CAFC6YwRsEwto_ixQyTmW54t2XvmBuohWaeUHA1JUc%2Bv7xfRmjQ%40mail.gmail.com.
