[cas-user] Re: delegated auth not working after upgrade to CAS 6.4.2

William Jojo Mon, 15 Nov 2021 05:53:05 -0800

Noelette,

Confirmed. I am doing non-autoforwarding SAML2 delegation to Azure. I have 
nginx proxy in front of embedded Tomcat app.war. Works in 6.3.7.1, borked 
in 6.4.2. Double-checked all of my cas.properties, nothing amiss.


In 6.3.7.1 (working):

2021-11-15 07:04:50,891 DEBUG 
[org.apereo.cas.web.DelegatedClientWebflowManager] - <Built ticket 
properties [{method=, theme=, locale=en}]>
2021-11-15 07:04:50,907 DEBUG 
[org.apereo.cas.web.DelegatedClientWebflowManager] - <Storing delegated 
authentication request ticket [TST-1-dWlIqP8W8O7dFxCdIVvxFZ7YM2xj-dai] for 
service [null] with properties [{theme=, targetService=null, method=, 
locale=en, service=null}]>
2021-11-15 07:04:50,914 DEBUG 
[org.apereo.cas.ticket.registry.AbstractMapBasedTicketRegistry] - <Added 
ticket [TST-1-dWlIqP8W8O7dFxCdIVvxFZ7YM2xj-dai] to registry.>
2021-11-15 07:04:50,921 DEBUG 
[org.apereo.cas.ticket.registry.AbstractMapBasedTicketRegistry] - <Ticket 
[TST-396f9908-6411-4a39-9318-53da7953330a] could not be found>
2021-11-15 07:04:50,922 DEBUG 
[org.apereo.cas.AbstractCentralAuthenticationService] - <Ticket 
[TST-396f9908-6411-4a39-9318-53da7953330a] by type [TransientSessionTicket] 
cannot be found in the ticket registry.>
2021-11-15 07:04:50,923 DEBUG 
[org.apereo.cas.ticket.registry.AbstractMapBasedTicketRegistry] - <Added 
ticket [TST-396f9908-6411-4a39-9318-53da7953330a] to registry.>
2021-11-15 07:04:51,141 DEBUG 
[org.apereo.cas.ticket.registry.AbstractMapBasedTicketRegistry] - <Added 
ticket [TST-396f9908-6411-4a39-9318-53da7953330a] to registry.>
2021-11-15 07:04:51,352 DEBUG 
[org.apereo.cas.web.BaseDelegatedAuthenticationController] - <Determined 
final redirect action for client [#SAML2Client# | name: HVCC Login - POC | 
callbackUrl: https://casdev.hvcc.edu/cas/login | urlResolver: 
org.pac4j.core.http.url.DefaultUrlResolver@3538d8d6 | callbackUrlResolver: 
org.pac4j.core.http.callback.QueryParameterCallbackUrlResolver@6785df10 | 
ajaxRequestResolver: 
org.pac4j.core.http.ajax.DefaultAjaxRequestResolver@6e3705e6 | 
redirectionActionBuilder: 
org.pac4j.saml.redirect.SAML2RedirectionActionBuilder@140b4e00 | 
credentialsExtractor: 
org.pac4j.saml.credentials.extractor.SAML2CredentialsExtractor@169e989c | 
authenticator: 
org.pac4j.saml.credentials.authenticator.SAML2Authenticator@65930cf1 | 
profileCreator: 
org.pac4j.core.profile.creator.AuthenticatorProfileCreator@144440f5 | 
logoutActionBuilder: 
org.pac4j.saml.logout.SAML2LogoutActionBuilder@335d3d90 | 
authorizationGenerators: [] |] as [#HttpAction# | code: 302 |]>


In 6.4.2 (borked):

2021-11-15 06:56:22,281 DEBUG 
[org.apereo.cas.support.pac4j.authentication.DefaultDelegatedClientFactory] 
- <Created delegated client [#SAML2Client# | name: HVCC Login - POC | 
callbackUrl: https://casdev.hvcc.edu/cas/login | urlResolver: null | 
callbackUrlResolver: 
org.pac4j.core.http.callback.QueryParameterCallbackUrlResolver@672e8871 | 
ajaxRequestResolver: null | redirectionActionBuilder: null | 
credentialsExtractor: null | authenticator: null | profileCreator: 
org.pac4j.core.profile.creator.AuthenticatorProfileCreator@34e68840 | 
logoutActionBuilder: org.pac4j.core.logout.NoLogoutActionBuilder@510203de | 
authorizationGenerators: [] | checkAuthenticationAttempt: true |]>
2021-11-15 06:56:22,281 DEBUG 
[org.apereo.cas.support.pac4j.RefreshableDelegatedClients] - <The following 
clients are built: [[#SAML2Client# | name: HVCC Login - POC | callbackUrl: 
https://casdev.hvcc.edu/cas/login | urlResolver: null | 
callbackUrlResolver: 
org.pac4j.core.http.callback.QueryParameterCallbackUrlResolver@672e8871 | 
ajaxRequestResolver: null | redirectionActionBuilder: null | 
credentialsExtractor: null | authenticator: null | profileCreator: 
org.pac4j.core.profile.creator.AuthenticatorProfileCreator@34e68840 | 
logoutActionBuilder: org.pac4j.core.logout.NoLogoutActionBuilder@510203de | 
authorizationGenerators: [] | checkAuthenticationAttempt: true |]]>
2021-11-15 06:56:22,767 DEBUG 
[org.apereo.cas.web.DefaultDelegatedClientAuthenticationWebflowManager] - 
<Built ticket properties [{method=, theme=, locale=}]>
2021-11-15 06:56:22,788 DEBUG 
[org.apereo.cas.web.DefaultDelegatedClientAuthenticationWebflowManager] - 
<Storing delegated authentication request ticket 
[TST-1-oa-QpQisQzARmzQPQIaGG-CTDvjlXGnw] for service [null] with properties 
[{theme=, targetService=null, method=, locale=, service=null}]>
2021-11-15 06:56:22,797 DEBUG 
[org.apereo.cas.ticket.registry.AbstractMapBasedTicketRegistry] - <Added 
ticket [TST-1-oa-QpQisQzARmzQPQIaGG-CTDvjlXGnw] to registry.>
2021-11-15 06:56:22,805 DEBUG 
[org.apereo.cas.ticket.registry.AbstractMapBasedTicketRegistry] - <Ticket 
[TST-396f9908-6411-4a39-9318-53da7953330a] could not be found>
2021-11-15 06:56:22,805 DEBUG 
[org.apereo.cas.AbstractCentralAuthenticationService] - <Ticket 
[TST-396f9908-6411-4a39-9318-53da7953330a] by type [TransientSessionTicket] 
cannot be found in the ticket registry.>
2021-11-15 06:56:22,807 DEBUG 
[org.apereo.cas.ticket.registry.AbstractMapBasedTicketRegistry] - <Added 
ticket [TST-396f9908-6411-4a39-9318-53da7953330a] to registry.>
2021-11-15 06:56:22,811 WARN 
[org.apereo.cas.web.DefaultDelegatedAuthenticationNavigationController] - 
<Authentication request was denied from the provider HVCC Login - POC>
java.lang.IllegalArgumentException: SAML request could not be determined 
from session store
at 
org.apereo.cas.support.saml.web.idp.delegation.SamlIdPDelegatedClientAuthenticationRequestCustomizer.lambda$customize$0(SamlIdPDelegatedClientAuthenticationRequestCustomizer.java:42)
 
~[cas-server-support-saml-idp-web-6.4.2.jar!/:6.4.2]

Looks like ticket mgmt is happening out of order from the debugs. But I am 
guessing...

Bill

On Monday, November 8, 2021 at 2:50:24 PM UTC-5 stou...@isu.edu wrote:

> I had delegated authentication working with CAS 6.3.7.1, but after I 
> upgraded to 6.4.2 I am getting the following error.
>
> 2021-11-08 12:36:40,578 DEBUG 
> [org.pac4j.core.context.session.JEESessionStore] - <createSession: false, 
> retrieved session: null>
> 2021-11-08 12:36:40,578 DEBUG 
> [org.pac4j.core.context.session.JEESessionStore] - <Can't get value for 
> key: SAMLRequest, no session available>
> 2021-11-08 12:36:40,594 WARN 
> [org.apereo.cas.web.DefaultDelegatedAuthenticationNavigationController] - 
> <Authentication request was denied from the provider Fischer-SSO>
> java.lang.IllegalArgumentException: SAML request could not be determined 
> from session store
> at 
> org.apereo.cas.support.saml.web.idp.delegation.SamlIdPDelegatedClientAuthenticationRequestCustomizer.lambda$customize$0(SamlIdPDelegatedClientAuthenticationRequestCustomizer.java:42)
>  
> ~[cas-server-support-saml-idp-web-6.4.2.jar:6.4.2]
> at java.util.Optional.orElseThrow(Optional.java:408) ~[?:?]
> at 
> org.apereo.cas.support.saml.web.idp.delegation.SamlIdPDelegatedClientAuthenticationRequestCustomizer.customize(SamlIdPDelegatedClientAuthenticationRequestCustomizer.java:42)
>  
> ~[cas-server-support-saml-idp-web-6.4.2.jar:6.4.2]
> at 
> org.apereo.cas.web.BaseDelegatedAuthenticationController.lambda$getRedirectionAction$1(BaseDelegatedAuthenticationController.java:81)
>  
> ~[cas-server-support-pac4j-webflow-6.4.2.jar:6.4.2]
> at java.util.stream.ForEachOps$ForEachOp$OfRef.accept(ForEachOps.java:183) 
> ~[?:?]
> at 
> java.util.stream.ReferencePipeline$2$1.accept(ReferencePipeline.java:177) 
> ~[?:?]
> at java.util.stream.SortedOps$SizedRefSortingSink.end(SortedOps.java:357) 
> ~[?:?]
> at java.util.stream.AbstractPipeline.copyInto(AbstractPipeline.java:485) 
> ~[?:?]
> at 
> java.util.stream.AbstractPipeline.wrapAndCopyInto(AbstractPipeline.java:474) 
> ~[?:?]
> at 
> java.util.stream.ForEachOps$ForEachOp.evaluateSequential(ForEachOps.java:150) 
> ~[?:?]
> at 
> java.util.stream.ForEachOps$ForEachOp$OfRef.evaluateSequential(ForEachOps.java:173)
>  
> ~[?:?]
> at java.util.stream.AbstractPipeline.evaluate(AbstractPipeline.java:234) 
> ~[?:?]
> at java.util.stream.ReferencePipeline.forEach(ReferencePipeline.java:497) 
> ~[?:?]
> at 
> org.apereo.cas.web.BaseDelegatedAuthenticationController.getRedirectionAction(BaseDelegatedAuthenticationController.java:81)
>  
> ~[cas-server-support-pac4j-webflow-6.4.2.jar:6.4.2]
> at 
> org.apereo.cas.web.BaseDelegatedAuthenticationController.getResultingView(BaseDelegatedAuthenticationController.java:134)
>  
> ~[cas-server-support-pac4j-webflow-6.4.2.jar:6.4.2]
> at 
> org.apereo.cas.web.DefaultDelegatedAuthenticationNavigationController.redirectToProvider(DefaultDelegatedAuthenticationNavigationController.java:63)
>  
> ~[cas-server-support-pac4j-webflow-6.4.2.jar:6.4.2]
> at jdk.internal.reflect.NativeMethodAccessorImpl.invoke0(Native Method) 
> ~[?:?]
> at 
> jdk.internal.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:62)
>  
> ~[?:?]
> at 
> jdk.internal.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
>  
> ~[?:?]
> at java.lang.reflect.Method.invoke(Method.java:566) ~[?:?]
> at 
> org.springframework.web.method.support.InvocableHandlerMethod.doInvoke(InvocableHandlerMethod.java:197)
>  
> ~[spring-web-5.3.9.jar:5.3.9]
> at 
> org.springframework.web.method.support.InvocableHandlerMethod.invokeForRequest(InvocableHandlerMethod.java:141)
>  
> ~[spring-web-5.3.9.jar:5.3.9]
> at 
> org.springframework.web.servlet.mvc.method.annotation.ServletInvocableHandlerMethod.invokeAndHandle(ServletInvocableHandlerMethod.java:106)
>  
> ~[spring-webmvc-5.3.9.jar:5.3.9]
> at 
> org.springframework.web.servlet.mvc.method.annotation.RequestMappingHandlerAdapter.invokeHandlerMethod(RequestMappingHandlerAdapter.java:895)
>  
> ~[spring-webmvc-5.3.9.jar:5.3.9]
> at 
> org.springframework.web.servlet.mvc.method.annotation.RequestMappingHandlerAdapter.handleInternal(RequestMappingHandlerAdapter.java:808)
>  
> ~[spring-webmvc-5.3.9.jar:5.3.9]
> at 
> org.springframework.web.servlet.mvc.method.AbstractHandlerMethodAdapter.handle(AbstractHandlerMethodAdapter.java:87)
>  
> ~[spring-webmvc-5.3.9.jar:5.3.9]
> at 
> org.springframework.web.servlet.DispatcherServlet.doDispatch(DispatcherServlet.java:1064)
>  
> ~[spring-webmvc-5.3.9.jar:5.3.9]
> at 
> org.springframework.web.servlet.DispatcherServlet.doService(DispatcherServlet.java:963)
>  
> ~[spring-webmvc-5.3.9.jar:5.3.9]
> at 
> org.springframework.web.servlet.FrameworkServlet.processRequest(FrameworkServlet.java:1006)
>  
> ~[spring-webmvc-5.3.9.jar:5.3.9]
> at 
> org.springframework.web.servlet.FrameworkServlet.doGet(FrameworkServlet.java:898)
>  
> ~[spring-webmvc-5.3.9.jar:5.3.9]
> at javax.servlet.http.HttpServlet.service(HttpServlet.java:655) 
> ~[servlet-api.jar:4.0.FR]
> at 
> org.springframework.web.servlet.FrameworkServlet.service(FrameworkServlet.java:883)
>  
> ~[spring-webmvc-5.3.9.jar:5.3.9]
> at javax.servlet.http.HttpServlet.service(HttpServlet.java:764) 
> ~[servlet-api.jar:4.0.FR]
> at 
> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:227)
>  
> ~[catalina.jar:9.0.54]
> at 
> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:162)
>  
> ~[catalina.jar:9.0.54]
> at org.apache.tomcat.websocket.server.WsFilter.doFilter(WsFilter.java:53) 
> ~[tomcat-websocket.jar:9.0.54]
> at 
> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:189)
>  
> ~[catalina.jar:9.0.54]
> at 
> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:162)
>  
> ~[catalina.jar:9.0.54]
> at 
> org.apereo.cas.web.support.AuthenticationCredentialsThreadLocalBinderClearingFilter.doFilter(AuthenticationCredentialsThreadLocalBinderClearingFilter.java:28)
>  
> ~[cas-server-core-web-api-6.4.2.jar:6.4.2]
> at 
> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:189)
>  
> ~[catalina.jar:9.0.54]
> at 
> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:162)
>  
> ~[catalina.jar:9.0.54]
> at 
> org.apereo.cas.web.support.filters.RequestParameterPolicyEnforcementFilter.doFilter(RequestParameterPolicyEnforcementFilter.java:401)
>  
> ~[cas-server-core-web-api-6.4.2.jar:6.4.2]
> at 
> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:189)
>  
> ~[catalina.jar:9.0.54]
> at 
> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:162)
>  
> ~[catalina.jar:9.0.54]
> at 
> org.apereo.cas.web.support.filters.ResponseHeadersEnforcementFilter.doFilter(ResponseHeadersEnforcementFilter.java:200)
>  
> ~[cas-server-core-web-api-6.4.2.jar:6.4.2]
> at 
> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:189)
>  
> ~[catalina.jar:9.0.54]
> at 
> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:162)
>  
> ~[catalina.jar:9.0.54]
> at 
> org.apereo.cas.web.support.filters.AddResponseHeadersFilter.doFilter(AddResponseHeadersFilter.java:62)
>  
> ~[cas-server-core-web-api-6.4.2.jar:6.4.2]
> at 
> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:189)
>  
> ~[catalina.jar:9.0.54]
> at 
> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:162)
>  
> ~[catalina.jar:9.0.54]
> at 
> org.springframework.boot.actuate.web.trace.servlet.HttpTraceFilter.doFilterInternal(HttpTraceFilter.java:88)
>  
> ~[spring-boot-actuator-2.5.4.jar:2.5.4]
> at 
> org.springframework.web.filter.OncePerRequestFilter.doFilter(OncePerRequestFilter.java:119)
>  
> ~[spring-web-5.3.9.jar:5.3.9]
> at 
> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:189)
>  
> ~[catalina.jar:9.0.54]
> at 
> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:162)
>  
> ~[catalina.jar:9.0.54]
> at 
> org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:327)
>  
> ~[spring-security-web-5.5.2.jar:5.5.2]
> at 
> org.springframework.security.web.access.intercept.FilterSecurityInterceptor.invoke(FilterSecurityInterceptor.java:115)
>  
> ~[spring-security-web-5.5.2.jar:5.5.2]
> at 
> org.springframework.security.web.access.intercept.FilterSecurityInterceptor.doFilter(FilterSecurityInterceptor.java:81)
>  
> ~[spring-security-web-5.5.2.jar:5.5.2]
> at 
> org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:336)
>  
> ~[spring-security-web-5.5.2.jar:5.5.2]
> at 
> org.springframework.security.web.access.ExceptionTranslationFilter.doFilter(ExceptionTranslationFilter.java:121)
>  
> ~[spring-security-web-5.5.2.jar:5.5.2]
> at 
> org.springframework.security.web.access.ExceptionTranslationFilter.doFilter(ExceptionTranslationFilter.java:115)
>  
> ~[spring-security-web-5.5.2.jar:5.5.2]
> at 
> org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:336)
>  
> ~[spring-security-web-5.5.2.jar:5.5.2]
> at 
> org.springframework.security.web.session.SessionManagementFilter.doFilter(SessionManagementFilter.java:126)
>  
> ~[spring-security-web-5.5.2.jar:5.5.2]
> at 
> org.springframework.security.web.session.SessionManagementFilter.doFilter(SessionManagementFilter.java:81)
>  
> ~[spring-security-web-5.5.2.jar:5.5.2]
> at 
> org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:336)
>  
> ~[spring-security-web-5.5.2.jar:5.5.2]
> at 
> org.springframework.security.web.authentication.AnonymousAuthenticationFilter.doFilter(AnonymousAuthenticationFilter.java:105)
>  
> ~[spring-security-web-5.5.2.jar:5.5.2]
> at 
> org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:336)
>  
> ~[spring-security-web-5.5.2.jar:5.5.2]
> at 
> org.springframework.security.web.servletapi.SecurityContextHolderAwareRequestFilter.doFilter(SecurityContextHolderAwareRequestFilter.java:149)
>  
> ~[spring-security-web-5.5.2.jar:5.5.2]
> at 
> org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:336)
>  
> ~[spring-security-web-5.5.2.jar:5.5.2]
> at 
> org.springframework.security.web.savedrequest.RequestCacheAwareFilter.doFilter(RequestCacheAwareFilter.java:63)
>  
> ~[spring-security-web-5.5.2.jar:5.5.2]
> at 
> org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:336)
>  
> ~[spring-security-web-5.5.2.jar:5.5.2]
> at 
> org.springframework.security.web.context.SecurityContextPersistenceFilter.doFilter(SecurityContextPersistenceFilter.java:110)
>  
> ~[spring-security-web-5.5.2.jar:5.5.2]
> at 
> org.springframework.security.web.context.SecurityContextPersistenceFilter.doFilter(SecurityContextPersistenceFilter.java:80)
>  
> ~[spring-security-web-5.5.2.jar:5.5.2]
> at 
> org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:336)
>  
> ~[spring-security-web-5.5.2.jar:5.5.2]
> at 
> org.springframework.security.web.context.request.async.WebAsyncManagerIntegrationFilter.doFilterInternal(WebAsyncManagerIntegrationFilter.java:55)
>  
> ~[spring-security-web-5.5.2.jar:5.5.2]
> at 
> org.springframework.web.filter.OncePerRequestFilter.doFilter(OncePerRequestFilter.java:119)
>  
> ~[spring-web-5.3.9.jar:5.3.9]
> at 
> org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:336)
>  
> ~[spring-security-web-5.5.2.jar:5.5.2]
> at 
> org.springframework.security.web.access.channel.ChannelProcessingFilter.doFilter(ChannelProcessingFilter.java:133)
>  
> ~[spring-security-web-5.5.2.jar:5.5.2]
> at 
> org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:336)
>  
> ~[spring-security-web-5.5.2.jar:5.5.2]
> at 
> org.springframework.security.web.FilterChainProxy.doFilterInternal(FilterChainProxy.java:211)
>  
> ~[spring-security-web-5.5.2.jar:5.5.2]
> at 
> org.springframework.security.web.FilterChainProxy.doFilter(FilterChainProxy.java:183)
>  
> ~[spring-security-web-5.5.2.jar:5.5.2]
> at 
> org.springframework.web.filter.DelegatingFilterProxy.invokeDelegate(DelegatingFilterProxy.java:358)
>  
> ~[spring-web-5.3.9.jar:5.3.9]
> at 
> org.springframework.web.filter.DelegatingFilterProxy.doFilter(DelegatingFilterProxy.java:271)
>  
> ~[spring-web-5.3.9.jar:5.3.9]
> at 
> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:189)
>  
> ~[catalina.jar:9.0.54]
> at 
> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:162)
>  
> ~[catalina.jar:9.0.54]
> at 
> org.springframework.web.filter.RequestContextFilter.doFilterInternal(RequestContextFilter.java:100)
>  
> ~[spring-web-5.3.9.jar:5.3.9]
> at 
> org.springframework.web.filter.OncePerRequestFilter.doFilter(OncePerRequestFilter.java:119)
>  
> ~[spring-web-5.3.9.jar:5.3.9]
> at 
> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:189)
>  
> ~[catalina.jar:9.0.54]
> at 
> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:162)
>  
> ~[catalina.jar:9.0.54]
> at 
> org.springframework.web.filter.FormContentFilter.doFilterInternal(FormContentFilter.java:93)
>  
> ~[spring-web-5.3.9.jar:5.3.9]
> at 
> org.springframework.web.filter.OncePerRequestFilter.doFilter(OncePerRequestFilter.java:119)
>  
> ~[spring-web-5.3.9.jar:5.3.9]
> at 
> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:189)
>  
> ~[catalina.jar:9.0.54]
> at 
> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:162)
>  
> ~[catalina.jar:9.0.54]
> at 
> org.springframework.boot.actuate.metrics.web.servlet.WebMvcMetricsFilter.doFilterInternal(WebMvcMetricsFilter.java:96)
>  
> ~[spring-boot-actuator-2.5.4.jar:2.5.4]
> at 
> org.springframework.web.filter.OncePerRequestFilter.doFilter(OncePerRequestFilter.java:119)
>  
> ~[spring-web-5.3.9.jar:5.3.9]
> at 
> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:189)
>  
> ~[catalina.jar:9.0.54]
> at 
> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:162)
>  
> ~[catalina.jar:9.0.54]
> at 
> org.apereo.cas.logging.web.ThreadContextMDCServletFilter.doFilter(ThreadContextMDCServletFilter.java:99)
>  
> ~[cas-server-core-logging-6.4.2.jar:6.4.2]
> at 
> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:189)
>  
> ~[catalina.jar:9.0.54]
> at 
> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:162)
>  
> ~[catalina.jar:9.0.54]
> at 
> org.apereo.inspektr.common.web.ClientInfoThreadLocalFilter.doFilter(ClientInfoThreadLocalFilter.java:66)
>  
> ~[inspektr-common-1.8.16.GA.jar:1.8.16.GA]
> at 
> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:189)
>  
> ~[catalina.jar:9.0.54]
> at 
> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:162)
>  
> ~[catalina.jar:9.0.54]
> at 
> org.springframework.boot.web.servlet.support.ErrorPageFilter.doFilter(ErrorPageFilter.java:126)
>  
> ~[spring-boot-2.5.4.jar:2.5.4]
> at 
> org.springframework.boot.web.servlet.support.ErrorPageFilter.access$000(ErrorPageFilter.java:64)
>  
> ~[spring-boot-2.5.4.jar:2.5.4]
> at 
> org.springframework.boot.web.servlet.support.ErrorPageFilter$1.doFilterInternal(ErrorPageFilter.java:101)
>  
> ~[spring-boot-2.5.4.jar:2.5.4]
> at 
> org.springframework.web.filter.OncePerRequestFilter.doFilter(OncePerRequestFilter.java:119)
>  
> ~[spring-web-5.3.9.jar:5.3.9]
> at 
> org.springframework.boot.web.servlet.support.ErrorPageFilter.doFilter(ErrorPageFilter.java:119)
>  
> ~[spring-boot-2.5.4.jar:2.5.4]
> at 
> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:189)
>  
> ~[catalina.jar:9.0.54]
> at 
> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:162)
>  
> ~[catalina.jar:9.0.54]
> at 
> org.springframework.web.filter.CharacterEncodingFilter.doFilterInternal(CharacterEncodingFilter.java:201)
>  
> ~[spring-web-5.3.9.jar:5.3.9]
> at 
> org.springframework.web.filter.OncePerRequestFilter.doFilter(OncePerRequestFilter.java:119)
>  
> ~[spring-web-5.3.9.jar:5.3.9]
> at 
> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:189)
>  
> ~[catalina.jar:9.0.54]
> at 
> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:162)
>  
> ~[catalina.jar:9.0.54]
> at 
> org.apache.logging.log4j.web.Log4jServletFilter.doFilter(Log4jServletFilter.java:71)
>  
> ~[log4j-web-2.14.1.jar:2.14.1]
> at 
> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:189)
>  
> ~[catalina.jar:9.0.54]
> at 
> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:162)
>  
> ~[catalina.jar:9.0.54]
> at 
> org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:197)
>  
> ~[catalina.jar:9.0.54]
> at 
> org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:97)
>  
> ~[catalina.jar:9.0.54]
> at 
> org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:540)
>  
> ~[catalina.jar:9.0.54]
> at 
> org.apache.catalina.valves.AbstractAccessLogValve.invoke(AbstractAccessLogValve.java:687)
>  
> ~[catalina.jar:9.0.54]
> at 
> org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:135) 
> ~[catalina.jar:9.0.54]
> at 
> org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:92) 
> ~[catalina.jar:9.0.54]
> at 
> org.apache.catalina.valves.AbstractAccessLogValve.invoke(AbstractAccessLogValve.java:687)
>  
> ~[catalina.jar:9.0.54]
> at 
> org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:78)
>  
> ~[catalina.jar:9.0.54]
> at 
> org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:357) 
> ~[catalina.jar:9.0.54]
> at 
> org.apache.coyote.http11.Http11Processor.service(Http11Processor.java:382) 
> ~[tomcat-coyote.jar:9.0.54]
> at 
> org.apache.coyote.AbstractProcessorLight.process(AbstractProcessorLight.java:65)
>  
> ~[tomcat-coyote.jar:9.0.54]
> at 
> org.apache.coyote.AbstractProtocol$ConnectionHandler.process(AbstractProtocol.java:895)
>  
> ~[tomcat-coyote.jar:9.0.54]
> at 
> org.apache.tomcat.util.net.NioEndpoint$SocketProcessor.doRun(NioEndpoint.java:1722)
>  
> ~[tomcat-coyote.jar:9.0.54]
> at 
> org.apache.tomcat.util.net.SocketProcessorBase.run(SocketProcessorBase.java:49)
>  
> ~[tomcat-coyote.jar:9.0.54]
> at 
> org.apache.tomcat.util.threads.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1191)
>  
> ~[tomcat-util.jar:9.0.54]
> at 
> org.apache.tomcat.util.threads.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:659)
>  
> ~[tomcat-util.jar:9.0.54]
> at 
> org.apache.tomcat.util.threads.TaskThread$WrappingRunnable.run(TaskThread.java:61)
>  
> ~[tomcat-util.jar:9.0.54]
> at java.lang.Thread.run(Thread.java:829) [?:?]
>
> The following dependencies are included in build.gradle (same as 6.3.7.1):
>     // CAS dependencies/modules may be listed here statically...
>     implementation "org.apereo.cas:cas-server-webapp:${casServerVersion}"
>     implementation 
> "org.apereo.cas:cas-server-support-json-service-registry:${casServerVersion}"
>     implementation 
> "org.apereo.cas:cas-server-support-ldap:${project.'cas.version'}"
>     implementation 
> "org.apereo.cas:cas-server-support-reports:${project.'cas.version'}"
>     implementation 
> "org.apereo.cas:cas-server-support-saml:${project.'cas.version'}"
>     implementation 
> "org.apereo.cas:cas-server-core-configuration-metadata-repository:${project.'cas.version'}"
>     implementation 
> "org.apereo.cas:cas-server-core-events-configuration:${project.'cas.version'}"
>     implementation 
> "org.apereo.cas:cas-server-support-pac4j-webflow:${project.'cas.version'}"
>     implementation 
> "org.apereo.cas:cas-server-support-saml-idp:${project.'cas.version'}"
>     implementation 
> "org.apereo.cas:cas-server-support-saml-idp-metadata:${project.'cas.version'}"
>     implementation 
> "org.apereo.cas:cas-server-support-saml-idp-web:${project.'cas.version'}"
>     implementation 
> "org.apereo.cas:cas-server-support-saml-idp-core:${project.'cas.version'}"
>
> I am delegating to a third party SAML2 IdP. I've probably been looking at 
> this for too long and am missing the obvious. Any insights are appreciated.
>
> Thanks,
> Noelette Stout
>
>

-- 
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines: https://goo.gl/1VRrw7
- Contributions: https://goo.gl/mh7qDG
--- 
You received this message because you are subscribed to the Google Groups "CAS 
Community" group.
To unsubscribe from this group and stop receiving emails from it, send an email 
to cas-user+unsubscr...@apereo.org.
To view this discussion on the web visit 
https://groups.google.com/a/apereo.org/d/msgid/cas-user/c35b8cad-c103-44c0-8b5a-aec0f04d5a4an%40apereo.org.

[cas-user] Re: delegated auth not working after upgrade to CAS 6.4.2

Reply via email to