I believe there's a specific class that is dedicated to RegEx  patterns
[1] and AFAIK, support for RegEx was made available starting from 3.4.12. 

 

Best,

-Misagh

 

[1]
https://github.com/Jasig/cas/blob/master/cas-server-core/src/main/java/org
/jasig/cas/services/RegexRegisteredService.java



 

From: Scott Battaglia [mailto:[email protected]] 
Sent: Wednesday, June 13, 2012 5:51 PM
To: [email protected]
Subject: Re: [cas-user] Services Management service URL regex?

 

Starting with 4.1.12, Regular Expressions should also be supported (I
think it specifically switches to RegEx support if your pattern starts
with a ^)

 

Marvin can confirm that though.

 

On Wed, Jun 13, 2012 at 7:56 PM, Mosior, Benjamin <[email protected]>
wrote:

Apache's Ant page on directory-based tasks seems to explain the
patterning. I'm not sure if it's exactly the same, but it might be
something worth reading: http://ant.apache.org/manual/dirtasks.html

Also, ctrl+click will deselect an attribute in the services management.

-Ben

________________________________________
From: Baron Fujimoto [[email protected]]
Sent: Wednesday, June 13, 2012 7:46 PM
To: [email protected]
Subject: [cas-user] Services Management service URL regex?


Having managed to get CAS to successfully release attributes, I'm now
trying to grok restricting access via the Services Manager.

I have a CAS client running in a separate instance of Tomcat on the same
host at "http://cas-dev.pvt.hawaii.edu:8888/";.

If I use the default Service URL "http://**"; configured in the example
InMemoryServiceRegistryDaoImpl, the client works.

2012-06-13 13:10:28,158 INFO
[org.jasig.cas.CentralAuthenticationServiceImpl] - Granted service ticket
[AAFSsPYAkNKN6Mb0Q6Li8D8gawrtLNVcSuxjGo5Xp50vukeCfuuvkY4W] for service
[http://cas-dev.pvt.hawaii.edu:8888/] for user [baron]

It also works if I set the Service URL
"http://cas-dev.pvt.hawaii.edu:8888/**":

2012-06-13 13:13:50,550 INFO
[com.github.inspektr.audit.support.Slf4jLoggingAuditTrailManager] - Audit
trail record BEGIN
=============================================================
WHO: baron
WHAT: RegisteredServiceImpl[id=0,name=HTTP,description=Only Allows HTTP
Urls,serviceId=http://cas-dev.pvt.hawaii.edu:8888/**,attributes={}
<http://cas-dev.pvt.hawaii.edu:8888/**,attributes=%7b%7d> ]

2012-06-13 13:14:25,422 INFO
[org.jasig.cas.CentralAuthenticationServiceImpl] - Granted service ticket
[AAFSsPYAkNKN6Mb0Q6Li8D8gawrtLB9oNkz68X46DJI+hrXXsKCZUAM3] for service
[http://cas-dev.pvt.hawaii.edu:8888/] for user [baron]

*************************

However, if I configure the Service URL as "http://cas-dev**";

2012-06-13 13:25:51,272 INFO
[com.github.inspektr.audit.support.Slf4jLoggingAuditTrailManager] - Audit
trail record BEGIN
=============================================================
WHO: baron
WHAT: RegisteredServiceImpl[id=0,name=HTTP,description=Only Allows HTTP
Urls,serviceId=http://cas-dev**,attributes={}]

I get the "Application Not Authorized to Use CAS" error.

2012-06-13 13:26:30,640 WARN
[org.jasig.cas.CentralAuthenticationServiceImpl] - ServiceManagement:
Unauthorized Service Access. Service [http://cas-dev.pvt.hawaii.edu:8888/]
not found in Service Registry.

The Services Manager says, "You can use Ant-style Pattern Matching".  Is
there a good reference for this regex syntax available?  It doesn't seem
to
quite line up with the regex variants I'm familiar with.

*************************

While on the topic of the Services Manager, once you have selected one or
more attributes to be returned for a service URL, is there any way to turn
them all off again short of deleting the entry altogether?  I couldn't
find a way to unselect the last remaining attribute in the list.

Aloha,
-baron
--
Baron Fujimoto <[email protected]> :: UH Information Technology Services
minutas cantorum, minutas balorum, minutas carboratum desendus pantorum

--

You are currently subscribed to [email protected] as:
[email protected]

To unsubscribe, change settings or access archives, see
http://www.ja-sig.org/wiki/display/JSG/cas-user

--
You are currently subscribed to [email protected] as:
[email protected]
To unsubscribe, change settings or access archives, see
http://www.ja-sig.org/wiki/display/JSG/cas-user

 

-- 
You are currently subscribed to [email protected] as:
[email protected]
To unsubscribe, change settings or access archives, see
http://www.ja-sig.org/wiki/display/JSG/cas-user

-- 
You are currently subscribed to [email protected] as: 
[email protected]
To unsubscribe, change settings or access archives, see 
http://www.ja-sig.org/wiki/display/JSG/cas-user

Reply via email to