Re: [cas-user] Deployment Question from the Excellent Docs at: 'dacurry-tns.github.io'

[Jann Malenkoff]

Thanks David --- for all your work on the documentation and reply below -- 
very much appreciated.

For historical reasons, we plan to go with a WAR and place it in 
/opt/tomcat/webapps

Our sys admin prefers an Apache HTTPD front-end and standalone tomcat as is 
(this is the only part we are diverting from your docs).

To build a WAR.do we run './build.sh package' at 
'/opt/workspace/cas-overlay-template'?

I don't see the WAR having the configurations we added in 
'/opt/workspace/cas-overlay-template/etc'

Spending many hours in fron of the computer --- my apologies if I am less 
than coherent.


On Wednesday, May 9, 2018 at 5:59:59 PM UTC-7, David Curry wrote:
>
> In my configuration (which is essentially what this guide is describing), 
> I use an external Tomcat, not the embedded one. So, my setup follows the 
> Tomcat hardening guidelines, which recommend deploying exploded directories 
> rather than WAR files. See the section on installing Tomcat (under Setting 
> up the environment) for more info on this.
>
> The "tar" command bundles up the contents of the "target/cas" directory, 
> which is what would end up in the WAR file anyway, and also your 
> "etc/cas/config" files.The other options just set things up so when the 
> files are extracted they're owned by the right user and group and have the 
> right permissions.
>
> Read ahead to the next section on the page (the installation shell script) 
> and you'll see where the script extracts the application into 
> "/var/lib/tomcat" ("/opt/tomcat/latest/webapps") and your config files into 
> "/etc/cas/config".
>
> So there's no WAR file to deploy, because it's not needed in the external 
> Tomcat setup. If you really want one Maven builds it and leaves it in the 
> "target" directory, but it's still going to expect the config files to be 
> in "/etc/cas/config", not inside the WAR file. 
>
> --Dave
>
>
> David A. Curry,  CISSP
> Director of Information Security
> The New School - Information Technology
> 71 Fifth Ave., 9th Fl. ~ New York, NY 10003
> +1 212 229-5300 x4728 ~ david...@newschool.edu 
> Sent from my phone; please excuse typos and inane auto-corrections.
> 
>
>
> On Wed, May 9, 2018, 20:29 Jann Malenkoff  > wrote:
>
>> I've been following the excellent CAS installation examples at 
>> https://dacurry-tns.github.io/deploying-apereo-cas/building_server_install-and-test-the-cas-application.html
>>
>> I have added our local setting for 'cas.properties' & 'log4j2.xml' in 
>> '/opt/workspace/cas-overlay-template/etc/cas/config'
>>
>> However I didn't quite understand the following:
>>
>> casdev-master# cd /opt/workspace/cas-overlay-templatecasdev-master# tar czf 
>> /tmp/cassrv-files.tgz --owner=root --group=tomcat --mode=g-w,o-rwx  etc/cas 
>> -C target cas --exclude cas/META-INF
>>
>>
>>
>>
>> Via above there is no build of the CAS war -- how will it pick up our 
>> locals settings in our local setting for 'cas.properties' & 'log4j2.xml' in 
>> '/opt/workspace/cas-overlay-template/etc/cas/config'?
>>
>> -- 
>> - Website: https://apereo.github.io/cas
>> - Gitter Chatroom: https://gitter.im/apereo/cas
>> - List Guidelines: https://goo.gl/1VRrw7
>> - Contributions: https://goo.gl/mh7qDG
>> --- 
>> You received this message because you are subscribed to the Google Groups 
>> "CAS Community" group.
>> To unsubscribe from this group and stop receiving emails from it, send an 
>> email to cas-user+u...@apereo.org .
>> To view this discussion on the web visit 
>> https://groups.google.com/a/apereo.org/d/msgid/cas-user/333a5108-6045-4249-826f-af1c49e78466%40apereo.org
>>  
>> 
>> .
>>
>

-- 
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines: https://goo.gl/1VRrw7
- Contributions: https://goo.gl/mh7qDG
--- 
You received this message because you are subscribed to the Google Groups "CAS 
Community" group.
To unsubscribe from this group and stop receiving emails from it, send an email 
to cas-user+unsubscr...@apereo.org.
To view this discussion on the web visit 
https://groups.google.com/a/apereo.org/d/msgid/cas-user/0970a406-025e-45f8-a846-89af17e29e7d%40apereo.org.

[cas-user] CAS 5.2.3 Memcached Help!

[Mr Rao]

Hi,
Any one using  CAS 5.2.3 with Memcached to cache tickets? I'm getting below 
error.  When I see the source code I do not see afterPropertiesSet method 
net.spy.memcached.spring.MemcachedClientFactoryBean it only implements 
FactoryBean.



See below jars in WEB-INF/lib

spymemcached-2.11.4
cas-server-support-memcached-core-5.2.3
cas-server-support-memcached-ticket-registry-5.2.3


Thanks
Rao



java.lang.NoSuchMethodError: 
net.spy.memcached.spring.MemcachedClientFactoryBean.afterPropertiesSet()V
at 
org.apereo.cas.memcached.MemcachedPooledClientConnectionFactory.create(MemcachedPooledClientConnectionFactory.java:68)
 
~[cas-server-support-memcached-core-5.2.3.jar:5.2.3]
at 
org.apereo.cas.memcached.MemcachedPooledClientConnectionFactory.create(MemcachedPooledClientConnectionFactory.java:25)
 
~[cas-server-support-memcached-core-5.2.3.jar:5.2.3]
at 
org.apache.commons.pool2.BasePooledObjectFactory.makeObject(BasePooledObjectFactory.java:60)
 
~[commons-pool2-2.4.2.jar:?]
at 
org.apache.commons.pool2.impl.GenericObjectPool.create(GenericObjectPool.java:868)
 
~[commons-pool2-2.4.2.jar:2.4.2]
at 
org.apache.commons.pool2.impl.GenericObjectPool.borrowObject(GenericObjectPool.java:435)
 
~[commons-pool2-2.4.2.jar:2.4.2]
at 
org.apache.commons.pool2.impl.GenericObjectPool.borrowObject(GenericObjectPool.java:363)
 
~[commons-pool2-2.4.2.jar:2.4.2]
at 
org.apereo.cas.ticket.registry.MemcachedTicketRegistry.getClientFromPool(MemcachedTicketRegistry.java:139)
 
~[cas-server-support-memcached-ticket-registry-5.2.3.jar:5.2.3]
at 
org.apereo.cas.ticket.registry.MemcachedTicketRegistry.addTicket(MemcachedTicketRegistry.java:54)
 
~[cas-server-support-memcached-ticket-registry-5.2.3.jar:5.2.3]
at 
org.apereo.cas.DefaultCentralAuthenticationService.createTicketGrantingTicket(DefaultCentralAuthenticationService.java:388)
 
~[DefaultCentralAuthenticationService.class:5.2.3]
at 
org.apereo.cas.DefaultCentralAuthenticationService$$FastClassBySpringCGLIB$$b02e48f2.invoke()
 
~[DefaultCentralAuthenticationService.class:5.2.3]
at 
org.springframework.cglib.proxy.MethodProxy.invoke(MethodProxy.java:204) 
~[spring-core-4.3.14.RELEASE.jar:?]
at 
org.springframework.aop.framework.CglibAopProxy$CglibMethodInvocation.invokeJoinpoint(CglibAopProxy.java:738)
 
~[spring-aop-4.3.14.RELEASE.jar:4.3.14.RELEASE]
at 
org.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:157)
 
~[spring-aop-4.3.14.RELEASE.jar:4.3.14.RELEASE]
at 
org.springframework.aop.aspectj.MethodInvocationProceedingJoinPoint.proceed(MethodInvocationProceedingJoinPoint.java:85)
 
~[spring-aop-4.3.14.RELEASE.jar:?]
at 
org.apereo.inspektr.audit.AuditTrailManagementAspect.handleAuditTrail(AuditTrailManagementAspect.java:134)
 
~[inspektr-audit-1.8.0.GA.jar:?]
at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) 
~[?:1.8.0_131]
at 
sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:62) 
~[?:1.8.0_131]
at 
sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
 
~[?:1.8.0_131]

-- 
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines: https://goo.gl/1VRrw7
- Contributions: https://goo.gl/mh7qDG
--- 
You received this message because you are subscribed to the Google Groups "CAS 
Community" group.
To unsubscribe from this group and stop receiving emails from it, send an email 
to cas-user+unsubscr...@apereo.org.
To view this discussion on the web visit 
https://groups.google.com/a/apereo.org/d/msgid/cas-user/f82d0327-f80d-44eb-a19b-64747d0b2e9a%40apereo.org.

[cas-user] Re: Installing CAS 5

[Jann Malenkoff]

Try the docs at dacurry-tns.github.io 

We are midway through the docs --- it seems to be the best and most 
comprehensive.

We are very thankful to the author(s).

On Wednesday, May 9, 2018 at 3:43:04 PM UTC-7, Y Levine wrote:
>
> We are making a jump from CAS3 to CAS5, the learning curve is very large.
>
> Can anyone recommend guides for CAS installations? 
>
> I apologize in advance, the apareo installation documents have confused 
> the heck out of us.
>
> Our starting point is from code download, to configure/build/deploy.
>
> Thanks.
>

-- 
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines: https://goo.gl/1VRrw7
- Contributions: https://goo.gl/mh7qDG
--- 
You received this message because you are subscribed to the Google Groups "CAS 
Community" group.
To unsubscribe from this group and stop receiving emails from it, send an email 
to cas-user+unsubscr...@apereo.org.
To view this discussion on the web visit 
https://groups.google.com/a/apereo.org/d/msgid/cas-user/caf32ef5-40ee-4490-94af-e4d05062d375%40apereo.org.

[cas-user] Deployment Question from the Excellent Docs at: 'dacurry-tns.github.io'

[Jann Malenkoff]

I've been following the excellent CAS installation examples at 
https://dacurry-tns.github.io/deploying-apereo-cas/building_server_install-and-test-the-cas-application.html

I have added our local setting for 'cas.properties' & 'log4j2.xml' in 
'/opt/workspace/cas-overlay-template/etc/cas/config'

However I didn't quite understand the following:

casdev-master# cd /opt/workspace/cas-overlay-templatecasdev-master# tar czf 
/tmp/cassrv-files.tgz --owner=root --group=tomcat --mode=g-w,o-rwx  etc/cas -C 
target cas --exclude cas/META-INF




Via above there is no build of the CAS war -- how will it pick up our 
locals settings in our local setting for 'cas.properties' & 'log4j2.xml' in 
'/opt/workspace/cas-overlay-template/etc/cas/config'?

-- 
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines: https://goo.gl/1VRrw7
- Contributions: https://goo.gl/mh7qDG
--- 
You received this message because you are subscribed to the Google Groups "CAS 
Community" group.
To unsubscribe from this group and stop receiving emails from it, send an email 
to cas-user+unsubscr...@apereo.org.
To view this discussion on the web visit 
https://groups.google.com/a/apereo.org/d/msgid/cas-user/333a5108-6045-4249-826f-af1c49e78466%40apereo.org.

[cas-user] Installing CAS 5

[Y Levine]

We are making a jump from CAS3 to CAS5, the learning curve is very large.

Can anyone recommend guides for CAS installations?

I apologize in advance, the apareo installation documents have confused the
heck out of us.

Our starting point is from code download, to configure/build/deploy.

Thanks.

-- 
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines: https://goo.gl/1VRrw7
- Contributions: https://goo.gl/mh7qDG
--- 
You received this message because you are subscribed to the Google Groups "CAS 
Community" group.
To unsubscribe from this group and stop receiving emails from it, send an email 
to cas-user+unsubscr...@apereo.org.
To view this discussion on the web visit 
https://groups.google.com/a/apereo.org/d/msgid/cas-user/CACMZ_TDPfvTPeye9nUwFyxjn2gtNZjCH54HhR9kma-LNJORAwg%40mail.gmail.com.

[cas-user] SAML 1.1 ticket validation in 5.3.0-R3

[Jared King]

I'm starting to evaluate 5.3.0-R3 and am getting an error when testing SAML 
1.1 ticket validation support. This is the response/error message I'm 
getting from CAS when POSTing to the /samlValidate endpoint:


http://schemas.xmlsoap.org/soap/envelope/;>
 
 
 
 
 service and ticket parameters are both required

 
 
 



Based on the error it sounds like CAS is expecting "service" and "ticket" 
parameters like you would send to the CAS 2.0 /serviceValidate endpoint, 
but according to the spec the only parameter used should be "TARGET":
https://github.com/apereo/cas/blob/v5.3.0-RC3/docs/cas-server-documentation/protocol/CAS-Protocol-Specification.md#42-samlvalidate-cas-30

Is this a bug or am I missing some configuration? Thanks for the help.

-- 
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines: https://goo.gl/1VRrw7
- Contributions: https://goo.gl/mh7qDG
--- 
You received this message because you are subscribed to the Google Groups "CAS 
Community" group.
To unsubscribe from this group and stop receiving emails from it, send an email 
to cas-user+unsubscr...@apereo.org.
To view this discussion on the web visit 
https://groups.google.com/a/apereo.org/d/msgid/cas-user/fab05400-2228-4c6f-afbc-9ac7e00c6100%40apereo.org.

[cas-user] Re: LDAP gradle-overlay setup not working

[oldmanpeterson]

Hi,

You can check out my configs here: https://github.com/oldmanpeterson/CAS
I use Active Directory as a back end.


On Tuesday, May 8, 2018 at 12:54:31 PM UTC-5, Spider Main wrote:
>
> Hello, 
>
> I generated a war file from cas-gradle-overlow and deployed on to Tomcat9. 
> Default Username/Password authentication worked and now I'm trying to 
> change it to LDAP but for some reason, am not able to see authentication 
> with LDAP. Can anyone of you guys suggest what's going on? 
>
> Below is the config for LDAP: 
> cas.authn.accept.users=
> cas.authn.ldap[0].type=AUTHENTICATED
> cas.authn.ldap[0].ldapUrl=ldap://xx:3268
> cas.authn.ldap[0].connectionStrategy=
> cas.authn.ldap[0].connectTimeout=5000
> cas.authn.ldap[0].subtreeSearch=true
> cas.authn.ldap[0].baseDn=dc=ad,dc=,dc=com
> cas.authn.ldap[0].userFilter=sAMAccountName={user}
> cas.authn.ldap[0].bindCredential=ldap
> cas.authn.ldap[0].useSsl=false
> cas.authn.ldap[0].validator.type=SEARCH
> cas.authn.ldap[0].validator.baseDn=dc=ad,dc=xxx,dc=com
> cas.authn.ldap[0].validator.attributeValues=top
> cas.authn.ldap[0].validator.scope=SUBTREE
> cas.authn.ldap[0].bindDn=cn=ldap user,ou=System 
> Accounts,dc=ad,dc=xxx,dc=com
>
> ldap.url=ldap://ldap.xxx.com:3268
> ldap.useStartTLS=false
> ldap.baseDn=dc=ad,dc=,dc=com
> ldap.connectTimeout=3000
> ldap.managerDn=cn=ldap user,ou=System Accounts,dc=ad,dc=xx,dc=com
> ldap.managerPassword=ldap
> ldap.authn.searchFilter=sAMAccountName={user}
> ldap.domain=cxtec.com
> ldap.allowMultipleDns=false
>
> 2018-05-08 13:53:38,070 ERROR 
> [org.apereo.cas.authentication.PolicyBasedAuthenticationManager] - 
>  authentication handler that supports [pvemi] of type 
> [UsernamePasswordCredential]. Examine the configuration to ensure a method 
> of authentication is defined and analyze CAS logs at DEBUG level to trace 
> the authentication event.>
> 2018-05-08 13:53:38,074 INFO 
> [org.apereo.inspektr.audit.support.Slf4jLoggingAuditTrailManager] -  trail record BEGIN
> =
> WHO: 
> WHAT: Supplied credentials: []
> ACTION: AUTHENTICATION_FAILED
> APPLICATION: CAS
>
> -Phani Vemi
>

-- 
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines: https://goo.gl/1VRrw7
- Contributions: https://goo.gl/mh7qDG
--- 
You received this message because you are subscribed to the Google Groups "CAS 
Community" group.
To unsubscribe from this group and stop receiving emails from it, send an email 
to cas-user+unsubscr...@apereo.org.
To view this discussion on the web visit 
https://groups.google.com/a/apereo.org/d/msgid/cas-user/de424220-ae33-49bf-89de-b1fe8132d5b3%40apereo.org.

Re: [cas-user] Favicon.ico file location (when building CAS 5.2.x with Maven)

[David Curry]

Unless told otherwise by a  tag, browsers expect favicon.ico to be at
the document root ("/"). That's WEB-INF/classes/static, so I believe you
should put it in src/main/resources/static/favicon.ico.

I think.

I ended up doing a custom template as well as a custom theme, so I just
used a  tag in the layout.html file to put the favicon (and the
stupid apple-touch-icon) in the "images" directory along with everything
else.



--

DAVID A. CURRY, CISSP
*DIRECTOR OF INFORMATION SECURITY*
INFORMATION TECHNOLOGY

71 FIFTH AVE., 9TH FL., NEW YORK, NY 10003
+1 212 229-5300 x4728 • david.cu...@newschool.edu

[image: The New School]

On Wed, May 9, 2018 at 4:00 PM, Paul Chauvet  wrote:

> Hi all,
>
>
>
> Forgive me if this is a stupid question – but I can’t find where to place
> the favicon.ico file on CAS (with a custom theme).
>
>
>
> Where (presumably somewhere within the src directory before building with
> maven) should the file be placed?
>
>
>
> Thanks in advance all!
>
>
>
> Paul Chauvet
>
> Information Security Officer
>
> State University of New York at New Paltz
>
> 845-257-3828
>
> chauv...@newpaltz.edu
>
> [image: emlogo]
>
>
>
> --
> - Website: https://apereo.github.io/cas
> - Gitter Chatroom: https://gitter.im/apereo/cas
> - List Guidelines: https://goo.gl/1VRrw7
> - Contributions: https://goo.gl/mh7qDG
> ---
> You received this message because you are subscribed to the Google Groups
> "CAS Community" group.
> To unsubscribe from this group and stop receiving emails from it, send an
> email to cas-user+unsubscr...@apereo.org.
> To view this discussion on the web visit https://groups.google.com/a/
> apereo.org/d/msgid/cas-user/SN1PR20MB2141082E216A50198E1C1
> 371A7990%40SN1PR20MB2141.namprd20.prod.outlook.com
> 
> .
>

-- 
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines: https://goo.gl/1VRrw7
- Contributions: https://goo.gl/mh7qDG
--- 
You received this message because you are subscribed to the Google Groups "CAS 
Community" group.
To unsubscribe from this group and stop receiving emails from it, send an email 
to cas-user+unsubscr...@apereo.org.
To view this discussion on the web visit 
https://groups.google.com/a/apereo.org/d/msgid/cas-user/CA%2Bd9XANx8g-YytsRvzfzSSRnPcToSHof2NGM3U07AxYOzFZbFw%40mail.gmail.com.

[cas-user] Favicon.ico file location (when building CAS 5.2.x with Maven)

[Paul Chauvet]

Hi all,

Forgive me if this is a stupid question - but I can't find where to place the 
favicon.ico file on CAS (with a custom theme).

Where (presumably somewhere within the src directory before building with 
maven) should the file be placed?

Thanks in advance all!

Paul Chauvet
Information Security Officer
State University of New York at New Paltz
845-257-3828
chauv...@newpaltz.edu
[emlogo]

-- 
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines: https://goo.gl/1VRrw7
- Contributions: https://goo.gl/mh7qDG
--- 
You received this message because you are subscribed to the Google Groups "CAS 
Community" group.
To unsubscribe from this group and stop receiving emails from it, send an email 
to cas-user+unsubscr...@apereo.org.
To view this discussion on the web visit 
https://groups.google.com/a/apereo.org/d/msgid/cas-user/SN1PR20MB2141082E216A50198E1C1371A7990%40SN1PR20MB2141.namprd20.prod.outlook.com.

Re: [cas-user] LDAP gradle-overlay setup not working

[Christian Poirier]

Hi

For me, I put the ldap settings in a separate file ldap.properties and I
had to tell Spring to load the properties file by indicating those settings
in the file application.properties and the ldap authentication began to
work.

  spring.profiles.active=standalone,ldap
  spring.profiles.include=ldap

I also put the spring.profiles.active setting in the bootstrap.properties.

Be sure to put the following line in /webapp/gradle/webapp.gradle file near line 147.

compile project(":support:cas-server-support-ldap")

By doing this, the LdapAuthenticationHandler will be registered and will
accept a Username/Password authentication.

I hope this will help you.


Christian Poirier
Mobile: 418-473-2824

2018-05-08 13:54 GMT-04:00 Spider Main :

> Hello,
>
> I generated a war file from cas-gradle-overlow and deployed on to Tomcat9.
> Default Username/Password authentication worked and now I'm trying to
> change it to LDAP but for some reason, am not able to see authentication
> with LDAP. Can anyone of you guys suggest what's going on?
>
> Below is the config for LDAP:
> cas.authn.accept.users=
> cas.authn.ldap[0].type=AUTHENTICATED
> cas.authn.ldap[0].ldapUrl=ldap://xx:3268
> cas.authn.ldap[0].connectionStrategy=
> cas.authn.ldap[0].connectTimeout=5000
> cas.authn.ldap[0].subtreeSearch=true
> cas.authn.ldap[0].baseDn=dc=ad,dc=,dc=com
> cas.authn.ldap[0].userFilter=sAMAccountName={user}
> cas.authn.ldap[0].bindCredential=ldap
> cas.authn.ldap[0].useSsl=false
> cas.authn.ldap[0].validator.type=SEARCH
> cas.authn.ldap[0].validator.baseDn=dc=ad,dc=xxx,dc=com
> cas.authn.ldap[0].validator.attributeValues=top
> cas.authn.ldap[0].validator.scope=SUBTREE
> cas.authn.ldap[0].bindDn=cn=ldap user,ou=System
> Accounts,dc=ad,dc=xxx,dc=com
>
> ldap.url=ldap://ldap.xxx.com:3268
> ldap.useStartTLS=false
> ldap.baseDn=dc=ad,dc=,dc=com
> ldap.connectTimeout=3000
> ldap.managerDn=cn=ldap user,ou=System Accounts,dc=ad,dc=xx,dc=com
> ldap.managerPassword=ldap
> ldap.authn.searchFilter=sAMAccountName={user}
> ldap.domain=cxtec.com
> ldap.allowMultipleDns=false
>
> 2018-05-08 13:53:38,070 ERROR [org.apereo.cas.authentication.
> PolicyBasedAuthenticationManager] -  Credentials may be incorrect or CAS cannot find authentication handler that
> supports [pvemi] of type [UsernamePasswordCredential]. Examine the
> configuration to ensure a method of authentication is defined and analyze
> CAS logs at DEBUG level to trace the authentication event.>
> 2018-05-08 13:53:38,074 INFO 
> [org.apereo.inspektr.audit.support.Slf4jLoggingAuditTrailManager]
> -  =
> WHO: 
> WHAT: Supplied credentials: []
> ACTION: AUTHENTICATION_FAILED
> APPLICATION: CAS
>
> -Phani Vemi
>
> --
> - Website: https://apereo.github.io/cas
> - Gitter Chatroom: https://gitter.im/apereo/cas
> - List Guidelines: https://goo.gl/1VRrw7
> - Contributions: https://goo.gl/mh7qDG
> ---
> You received this message because you are subscribed to the Google Groups
> "CAS Community" group.
> To unsubscribe from this group and stop receiving emails from it, send an
> email to cas-user+unsubscr...@apereo.org.
> To view this discussion on the web visit https://groups.google.com/a/
> apereo.org/d/msgid/cas-user/7ee48f04-0e0c-46dd-879c-
> 3a0136994668%40apereo.org
> 
> .
>

-- 
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines: https://goo.gl/1VRrw7
- Contributions: https://goo.gl/mh7qDG
--- 
You received this message because you are subscribed to the Google Groups "CAS 
Community" group.
To unsubscribe from this group and stop receiving emails from it, send an email 
to cas-user+unsubscr...@apereo.org.
To view this discussion on the web visit 
https://groups.google.com/a/apereo.org/d/msgid/cas-user/CA%2Bg7XAmYxNSQxQyYfg%2Bo%2BrEzjzCT%3DAfZUiPKt3%2BQ7K1ixZVgPQ%40mail.gmail.com.

[cas-user] CAS 5.1.8, 5.1.9 not in the CAS Gradle Overlay Template

[Steve Généreux]

Hi,

Since version 5.1.7, no new version of CAS in the CAS Gradle Overlay 
Template, Branch 5.1.  Is it possible to add version 5.1.8 and 5.1.9?

Thanks

Steve

-- 
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines: https://goo.gl/1VRrw7
- Contributions: https://goo.gl/mh7qDG
--- 
You received this message because you are subscribed to the Google Groups "CAS 
Community" group.
To unsubscribe from this group and stop receiving emails from it, send an email 
to cas-user+unsubscr...@apereo.org.
To view this discussion on the web visit 
https://groups.google.com/a/apereo.org/d/msgid/cas-user/f24f4ef6-40a7-424c-a9bb-a2147c86624b%40apereo.org.

[cas-user] CAS5.3.0-RC2 - Setting profile specific properties

[Jay]

Hello everyone,


I am trying to place the saml & services directory under the classpath for 
each environment, like below

[src]

[main]

[resources]

[cas-dev]

[saml]

[services]

[cas-stage]

[saml]

[services]

[cas-prod]

[saml]

[services]


Will it be able to load the specific profile if I make the following changes

   - Add a property to JAVA_OPTS 
   
-DSpring.profiles.active =   



   - Make the following changes to application.yml file

info:
description: CAS Configuration

spring:
profiles:
active: dev
cas:
authn:
samlIdp:
metadata:
location: classpath:/cas-dev/saml/
serviceRegistry:
json:
location: classpath:/cas-dev/services/
---
spring:
profiles:
active: stage
cas:
authn:
samlIdp:
metadata:
location: classpath:/cas-stage/saml/
serviceRegistry:
json:
location: classpath:/cas-stage/services/
 


   - Place rest of all the properties in cas.properties file under 
   etc/cas/config 

Could someone please help me here to know if this is the right approach and 
by doing this the saml and services related files would be loaded without 
any issues.

P.S. Both application.yml and cas.properties are placed in the same 
location under etc/cas/config

Thanks in advance.

Regards
Jay 

 

 

 

 

 

 

 

 

-- 
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines: https://goo.gl/1VRrw7
- Contributions: https://goo.gl/mh7qDG
--- 
You received this message because you are subscribed to the Google Groups "CAS 
Community" group.
To unsubscribe from this group and stop receiving emails from it, send an email 
to cas-user+unsubscr...@apereo.org.
To view this discussion on the web visit 
https://groups.google.com/a/apereo.org/d/msgid/cas-user/5712b812-3b6d-428d-a443-edf53713da5a%40apereo.org.

Re: [cas-user] Re: CAS not redirecting to service after successful authentication.

[Neha Gupta]

Hello Ray,

Yes that what is clear from the traces that service ticket are getting 
generated but not validated. I have done all the configuration required in 
ASP.NET application.
Infact i just included the "DotNetCasClient" package and everything was 
done automatically. I just changed the values of some attributes like 
casServerLoginUrl, casServerUrlPrefix etc.

Below is the link which i followed for doing the changes in ASP.NET 
application: -
https://github.com/apereo/dotnet-cas-client#integration-instructions

I don't have any idea as what can be done to solve this problem and i would 
greatly appreciate if your community can help me out to solve the issue.

I am attaching web.config file for reference here.

PS: - I don't have any intention of using any particular ticket validator. 
Initially i tried with Cas20 but as it was not working so i switched to 
Saml11 which though working but not redirecting to the ASP.NET application.


Regards
Neha Gupta


On Tuesday, May 8, 2018 at 6:39:44 PM UTC+2, rbon wrote:
>
> Neha,
>
> There may be other settings that need to be modified when switching from 
> SAML11 to CAS20. ST are being created but not validated. Your ASP.NET 
> client is not configured correctly.
>
> Ray
>
> On Tue, 2018-05-08 at 03:56 -0700, Neha Gupta wrote:
>
> Hello Andy, 
>
> Thanks for reply.
> I was also wondering about the TARGET in the URL and i think its because 
> of the *ticketValidatorName="Saml11"* mentioned in the web.config file of 
> ASP.NET application and when i change the value of "ticketValidatorName" 
> to Cas10 or Cas20 then it does not work at all.Also please find attached 
> traces of the same.
>
> Hope this will help.
>
>
> Regards
> Neha Gupta
>
>
>
>
> On Tuesday, May 8, 2018 at 3:40:21 AM UTC+2, Andy Ng wrote: 
>
> Hi Neha, 
>
> Would like to know in which documentation do you know about the parameter 
> TARGET in "https://idiv-dev1:8443/cas/login?TARGET=
> *http%3a%2f%2flocalhost%3a60397%2f*", I didn't see this parameter in the 
> official documentation. 
> Maybe it is something related to ASP.NET?
>
> Anyway, the usual parameter for defining service in CAS is "service", that 
> means your url should be "https://idiv-dev1:8443/cas/login?*service*
> =http%3a%2f%2flocalhost%3a60397%2f"
>
> It is nice that you attached the debug log:
> - I can see that the service is register successfully based on " registered service [^(https|imaps|http)://.*]>", so your service 
> registration is correct.
>
> Regarding the part related to ASP.NET, I have no idea so I would not 
> comment on that. But i think since you can login success, the ASP.NET 
> part should be fine as is.
>
> Cheers!
> - Andy
>
>
> On Monday, 7 May 2018 22:12:34 UTC+8, Neha Gupta wrote: 
>
> Dear All, 
>
> I am trying to integrate CAS with ASP.NET application.
> Everything is working fine but CAS is not able to redirect to the 
> destination service and showing its own logged in page.
>
> Final URL is: - https://idiv-dev1:8443/cas/login?TARGET=
> *http%3a%2f%2flocalhost%3a60397%2f*
>
> where in TARGET my service URL is defined where i want CAS to redirect .
>
> Following configuration i have done in "*web.config*" file: -
>
> * casServerLoginUrl="https://idiv-dev1:8443/cas/login; 
> casServerUrlPrefix="https://idiv-dev1:8443/cas/; 
> serverName="http://localhost:60397/; 
> notAuthorizedUrl="~/NotAuthorized.aspx" 
> redirectAfterValidation="true"
>  renew="false" 
> singleSignOut="true" 
> ticketValidatorName="Saml11" 
> serviceTicketManager="CacheServiceTicketManager"
> * />*
>
> * *
>   https://idiv-dev1:8443/cas/login; cookieless="UseCookies" />
> **
>
> Along with this configuration i have also mentioned in "*FilterConfig.cs*" 
> below two lines: - 
>
> filters.Add(new System.Web.Mvc.AuthorizeAttribute());
> filters.Add(new RequireHttpsAttribute());
>
>
> Please let me know where is the problem as i have no clue.
>
> PS: - I have registered the service with CAS and also below service is 
> present which authorizes all services to pass through CAS: -
> {
>   "@class" : "org.apereo.cas.services.RegexRegisteredService",
>   "serviceId" : "*^(https|imaps|http)://.**",
>   "name" : "Apereo",
>   "theme" : "apereo",
>   "id" : 1002,
>   "description" : "Apereo foundation sample service",
>   "evaluationOrder" : 1
>"accessStrategy" : {
> "@class" : 
> "org.apereo.cas.services.DefaultRegisteredServiceAccessStrategy",
> "enabled" : true,
> "ssoEnabled" : true
>   }
> }
>
>
>
>
> Regards
> Neha Gupta
>
>
> -- 
> Ray Bon
> Programmer analyst
> Development Services, University Systems
> 2507218831 | CLE 019 | rb...@uvic.ca 
>
>

-- 
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines: https://goo.gl/1VRrw7
- Contributions: https://goo.gl/mh7qDG
--- 
You received this message because you are subscribed to the Google Groups "CAS 
Community" group.
To unsubscribe from this group and stop receiving emails from it, send an email 
to 

Re: [cas-user] ORCID API updated to version 2.0.

[Neha Gupta]

Hello  Jérôme,

Thanks for the reply but it was me only who proposed these changes.

But it seems that now they have completely stopped supporting the previuos 
versions of Orcid API and thus now they are not working and throwing an 
error. Though same was working before May.So now they are advising to 
upgrade to version 2.0 or 2.1 and below is the link where they have 
mentioned the details for upgrading the same: -

https://members.orcid.org/api/news/xsd-20-update

So just want to know when you are planning to provide full support for 
Orcid provider and it would be great if possible let me the estimated 
release when they can be incorporated.


Regards
Neha Gupta


On Monday, May 7, 2018 at 3:30:53 PM UTC+2, leleuj wrote:
>
> Hi,
>
> This upgrade will be available in pac4j 3.0.0(-RC2). See: 
> https://github.com/pac4j/pac4j/commit/cfb5113300de914b6a6e5a109a87a9d1da576472
> Thanks.
> Best regards,
> Jérôme
>
>
> On Mon, May 7, 2018 at 9:55 AM, Neha Gupta  > wrote:
>
>> Dear CAS Community,
>>
>> ORCID have updated the API version to 2 and as such problem is coming 
>> while authenticating with Orcid credentials. I am attaching a trace for the 
>> same. Request you to please look into the same.
>>
>> Error shown in the CAS trace: -
>>
>> http://www.orcid.org/ns/orcid;>
>> 1.2
>> API Version 1.1 is no longer available. please upgrade to 
>> the 2.0 API https://members.orcid.org/api/news/xsd-20-update
>> 
>>
>>
>> Let me know in case any further information is required.
>>
>>
>> Regards
>> Neha Gupta
>>
>> -- 
>> - Website: https://apereo.github.io/cas
>> - Gitter Chatroom: https://gitter.im/apereo/cas
>> - List Guidelines: https://goo.gl/1VRrw7
>> - Contributions: https://goo.gl/mh7qDG
>> --- 
>> You received this message because you are subscribed to the Google Groups 
>> "CAS Community" group.
>> To unsubscribe from this group and stop receiving emails from it, send an 
>> email to cas-user+u...@apereo.org .
>> To view this discussion on the web visit 
>> https://groups.google.com/a/apereo.org/d/msgid/cas-user/defeb581-ade3-4a1f-92e7-e9fa42388bec%40apereo.org
>>  
>> 
>> .
>>
>
>

-- 
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines: https://goo.gl/1VRrw7
- Contributions: https://goo.gl/mh7qDG
--- 
You received this message because you are subscribed to the Google Groups "CAS 
Community" group.
To unsubscribe from this group and stop receiving emails from it, send an email 
to cas-user+unsubscr...@apereo.org.
To view this discussion on the web visit 
https://groups.google.com/a/apereo.org/d/msgid/cas-user/16a820f8-8cd4-4d4a-9df2-8a6facdbd702%40apereo.org.