Re: [cas-user] Customizing AUP Webflow Logic

2023-09-12 Thread Trevor Fong 
Thanks so much, Ray!

> Test classes are not part of packaged jars. 

That was indeed the problem!  Ripping out the 
cas-overlay-template-6.6.11/src/main/test directory allowed the overlay to 
properly build!

Thanks again,
Trev

On Monday, September 11, 2023 at 10:02:21 AM UTC-7 Ray Bon wrote:

> Trevor,
>
> Test classes are not part of packaged jars. If you want test classes, you 
> have to copy them into your src directory.
> Beware, you may have to copy in dependencies of the test classes too; and 
> remember to update them when you upgrade.
> Is it possible to rework your logic to extend the existing flow, instead 
> of changing it?
>
> Ray
>
>
> On Fri, 2023-09-08 at 17:14 -0700, Trevor Fong wrote:
>
> Notice: This message was sent from outside the University of Victoria 
> email system. Please be cautious with links and sensitive information.
>
>
> Hi All, 
> I'm trying to customize the AUP template view and some of the logic behind 
> its SUBMIT button. The problem is that I'm running into some compiler 
> errors when I try to do a "./gradlew clean build": 
>
> $ ./gradlew clean build
> Configuration on demand is an incubating feature.
>
> > Task :compileTestJava FAILED
> /Users/tjfong/git/aws-setup/cas6/cas-6.6.11-dev/cas-overlay-template-6.6.11/src/test/java/org/apereo/cas/aup/LdapAcceptableUsagePolicyRepositoryTests.java:3:
>  
> error: package org.apereo.cas.adaptors.ldap does not exist
> import org.apereo.cas.adaptors.ldap.LdapIntegrationTestsOperations;
>^
> /Users/tjfong/git/aws-setup/cas6/cas-6.6.11-dev/cas-overlay-template-6.6.11/src/test/java/org/apereo/cas/aup/LdapAcceptableUsagePolicyRepositoryTests.java:7:
>  
> error: package org.apereo.cas.util.junit does not exist
> import org.apereo.cas.util.junit.EnabledIfListeningOnPort;
> ^
> /Users/tjfong/git/aws-setup/cas6/cas-6.6.11-dev/cas-overlay-template-6.6.11/src/test/java/org/apereo/cas/aup/LdapAcceptableUsagePolicyRepositoryTests.java:9:
>  
> error: package com.unboundid.ldap.sdk does not exist
> import com.unboundid.ldap.sdk.LDAPConnection;
>  ^
> /Users/tjfong/git/aws-setup/cas6/cas-6.6.11-dev/cas-overlay-template-6.6.11/src/test/java/org/apereo/cas/aup/LdapAcceptableUsagePolicyRepositoryTests.java:52:
>  
> error: cannot find symbol
> public class LdapAcceptableUsagePolicyRepositoryTests extends 
> BaseAcceptableUsagePolicyRepositoryTests {
>   ^
>   symbol: class BaseAcceptableUsagePolicyRepositoryTests
> /Users/tjfong/git/aws-setup/cas6/cas-6.6.11-dev/cas-overlay-template-6.6.11/src/test/java/org/apereo/cas/aup/LdapAcceptableUsagePolicyRepositoryTests.java:41:
>  
> error: cannot find symbol
> @EnabledIfListeningOnPort(port = 10389)
>  ^
>   symbol: class EnabledIfListeningOnPort
> 5 errors
>
> FAILURE: Build failed with an exception.
>
>
> Would someone be able to tell me if I'm following the right path (see 
> below) or tell me what I'm doing wrong?  Presumably I need to add extra 
> 'implementation "org.apereo.cas:blah"' references to build.gradle - how do 
> I find out what to add?
>
> Here's what I did to get thus far:
>
> cd /opt/cas/workspace/
> git clone https://github.com/apereo/cas.git
> ## There doesn't seem to be a v6.6.11 tag?
> git checkout v6.6.10
>  
> cd /opt/cas/workspace/cas-6.6.11-dev
> getcas --directory cas-overlay-template-6.6.11 --type cas-overlay 
> --casVersion 6.6.11 --modules 
> support-jpa-ticket-registry,support-jpa-service-registry,support-ldap,support-saml,support-duo,support-audit-jdbc,support-aup-ldap,support-aup-webflow
>  
> ## Copy files that we want to customize from cas to the overlay
> cp -prnv /opt/cas/workspace/cas/support/cas-server-support-aup-ldap/src/* 
> /opt/cas/workspace/cas-6.6.11-dev/cas-overlay-template-6.6.11/src/
>
> ## Customize:
> # 
> cas-overlay-template-6.6.11/src/main/resources/templates/aup/casAcceptableUsagePolicyView.html
> # 
> cas-overlay-template-6.6.11/src/main/java/org/apereo/cas/aup/LdapAcceptableUsagePolicyRepository.java
>  
> ## Add additional implementations to build.gradle to get rid of "class not 
> found" type build errors
> #implementation "org.apereo.cas:cas-server-support-aup-core"
> #implementation "org.apereo.cas:cas-server-support-ldap-core"
> #implementation "org.apereo.cas:cas-server-core-util"
> #implementation "org.apereo.cas:cas-server-core-web-api"
>   
> cd /opt/cas/workspace
> cd cas-6.6.11-dev/cas-overlay-template*
> ./gradlew clean build
>  
> See build errors above.
>
> Thanks a lot,
> Trev

Re: [cas-user] Customizing AUP Webflow Logic

2023-09-11 Thread Trevor Fong 
Hi All,
Just wondering if anyone has any ideas about the build errors?
Thanks
Trev

.
On Sep 8, 2023 at 9:48 PM -0700, Trevor Fong , wrote:
> Hi All,
> I'm trying to customize the AUP template view and some of the logic behind 
> its SUBMIT button. The problem is that I'm running into some compiler errors 
> when I try to do a "./gradlew clean build":
>
> $ ./gradlew clean build
> Configuration on demand is an incubating feature.
>
> > Task :compileTestJava FAILED
> /Users/tjfong/git/aws-setup/cas6/cas-6.6.11-dev/cas-overlay-template-6.6.11/src/test/java/org/apereo/cas/aup/LdapAcceptableUsagePolicyRepositoryTests.java:3:
>  error: package org.apereo.cas.adaptors.ldap does not exist
> import org.apereo.cas.adaptors.ldap.LdapIntegrationTestsOperations;
>                                    ^
> /Users/tjfong/git/aws-setup/cas6/cas-6.6.11-dev/cas-overlay-template-6.6.11/src/test/java/org/apereo/cas/aup/LdapAcceptableUsagePolicyRepositoryTests.java:7:
>  error: package org.apereo.cas.util.junit does not exist
> import org.apereo.cas.util.junit.EnabledIfListeningOnPort;
>                                 ^
> /Users/tjfong/git/aws-setup/cas6/cas-6.6.11-dev/cas-overlay-template-6.6.11/src/test/java/org/apereo/cas/aup/LdapAcceptableUsagePolicyRepositoryTests.java:9:
>  error: package com.unboundid.ldap.sdk does not exist
> import com.unboundid.ldap.sdk.LDAPConnection;
>                              ^
> /Users/tjfong/git/aws-setup/cas6/cas-6.6.11-dev/cas-overlay-template-6.6.11/src/test/java/org/apereo/cas/aup/LdapAcceptableUsagePolicyRepositoryTests.java:52:
>  error: cannot find symbol
> public class LdapAcceptableUsagePolicyRepositoryTests extends 
> BaseAcceptableUsagePolicyRepositoryTests {
>                                                               ^
>   symbol: class BaseAcceptableUsagePolicyRepositoryTests
> /Users/tjfong/git/aws-setup/cas6/cas-6.6.11-dev/cas-overlay-template-6.6.11/src/test/java/org/apereo/cas/aup/LdapAcceptableUsagePolicyRepositoryTests.java:41:
>  error: cannot find symbol
> @EnabledIfListeningOnPort(port = 10389)
>  ^
>   symbol: class EnabledIfListeningOnPort
> 5 errors
>
> FAILURE: Build failed with an exception.
>
>
> Would someone be able to tell me if I'm following the right path (see below) 
> or tell me what I'm doing wrong?  Presumably I need to add extra 
> 'implementation "org.apereo.cas:blah"' references to build.gradle - how do I 
> find out what to add?
>
> Here's what I did to get thus far:
>
> cd /opt/cas/workspace/
> git clone https://github.com/apereo/cas.git
> ## There doesn't seem to be a v6.6.11 tag?
> git checkout v6.6.10
>
> cd /opt/cas/workspace/cas-6.6.11-dev
> getcas --directory cas-overlay-template-6.6.11 --type cas-overlay 
> --casVersion 6.6.11 --modules 
> support-jpa-ticket-registry,support-jpa-service-registry,support-ldap,support-saml,support-duo,support-audit-jdbc,support-aup-ldap,support-aup-webflow
>
> ## Copy files that we want to customize from cas to the overlay
> cp -prnv /opt/cas/workspace/cas/support/cas-server-support-aup-ldap/src/* 
> /opt/cas/workspace/cas-6.6.11-dev/cas-overlay-template-6.6.11/src/
>
> ## Customize:
> # 
> cas-overlay-template-6.6.11/src/main/resources/templates/aup/casAcceptableUsagePolicyView.html
> # 
> cas-overlay-template-6.6.11/src/main/java/org/apereo/cas/aup/LdapAcceptableUsagePolicyRepository.java
>
> ## Add additional implementations to build.gradle to get rid of "class not 
> found" type build errors
> #    implementation "org.apereo.cas:cas-server-support-aup-core"
> #    implementation "org.apereo.cas:cas-server-support-ldap-core"
> #    implementation "org.apereo.cas:cas-server-core-util"
> #    implementation "org.apereo.cas:cas-server-core-web-api"
>
> cd /opt/cas/workspace
> cd cas-6.6.11-dev/cas-overlay-template*
> ./gradlew clean build
>
> See build errors above.
>
> Thanks a lot,
> Trev
>
> --
> - Website: https://apereo.github.io/cas
> - Gitter Chatroom: https://gitter.im/apereo/cas
> - List Guidelines: https://goo.gl/1VRrw7
> - Contributions: https://goo.gl/mh7qDG
> ---
> You received this message because you are subscribed to the Google Groups 
> "CAS Community" group.
> To unsubscribe from this group and stop receiving emails from it, send an 
> email to cas-user+unsubscr...@apereo.org.
> To view this discussion on the web visit 
> https://groups.google.com/a/apereo.org/d/msgid/cas-user/e9a56978-7838-40dc-88e0-d60c4a8e5556n%40apereo.org.

-- 
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines: https://goo.gl/1VRrw7
- Contributions: https://goo.gl/mh7qDG
--- 
You received this message because you are subscribed to the Google Groups "CAS 
Community" group.
To unsubscribe from this group and stop receiving emails from it, send an email 
to cas-user+unsubscr...@apereo.org.
To view this discussion on the web visit 
https://groups.google.com/a/apereo.org/d/msgid/cas-user/098b22e1-1e68-42bb-8a4a-5af8b4f65f76%40Spark.

[cas-user] Customizing AUP Webflow Logic

2023-09-08 Thread Trevor Fong 
Hi All,
I'm trying to customize the AUP template view and some of the logic behind 
its SUBMIT button. The problem is that I'm running into some compiler 
errors when I try to do a "./gradlew clean build": 

$ ./gradlew clean build
Configuration on demand is an incubating feature.

> Task :compileTestJava FAILED
/Users/tjfong/git/aws-setup/cas6/cas-6.6.11-dev/cas-overlay-template-6.6.11/src/test/java/org/apereo/cas/aup/LdapAcceptableUsagePolicyRepositoryTests.java:3:
 
error: package org.apereo.cas.adaptors.ldap does not exist
import org.apereo.cas.adaptors.ldap.LdapIntegrationTestsOperations;
   ^
/Users/tjfong/git/aws-setup/cas6/cas-6.6.11-dev/cas-overlay-template-6.6.11/src/test/java/org/apereo/cas/aup/LdapAcceptableUsagePolicyRepositoryTests.java:7:
 
error: package org.apereo.cas.util.junit does not exist
import org.apereo.cas.util.junit.EnabledIfListeningOnPort;
^
/Users/tjfong/git/aws-setup/cas6/cas-6.6.11-dev/cas-overlay-template-6.6.11/src/test/java/org/apereo/cas/aup/LdapAcceptableUsagePolicyRepositoryTests.java:9:
 
error: package com.unboundid.ldap.sdk does not exist
import com.unboundid.ldap.sdk.LDAPConnection;
 ^
/Users/tjfong/git/aws-setup/cas6/cas-6.6.11-dev/cas-overlay-template-6.6.11/src/test/java/org/apereo/cas/aup/LdapAcceptableUsagePolicyRepositoryTests.java:52:
 
error: cannot find symbol
public class LdapAcceptableUsagePolicyRepositoryTests extends 
BaseAcceptableUsagePolicyRepositoryTests {
  ^
  symbol: class BaseAcceptableUsagePolicyRepositoryTests
/Users/tjfong/git/aws-setup/cas6/cas-6.6.11-dev/cas-overlay-template-6.6.11/src/test/java/org/apereo/cas/aup/LdapAcceptableUsagePolicyRepositoryTests.java:41:
 
error: cannot find symbol
@EnabledIfListeningOnPort(port = 10389)
 ^
  symbol: class EnabledIfListeningOnPort
5 errors

FAILURE: Build failed with an exception.


Would someone be able to tell me if I'm following the right path (see 
below) or tell me what I'm doing wrong?  Presumably I need to add extra 
'implementation "org.apereo.cas:blah"' references to build.gradle - how do 
I find out what to add?

Here's what I did to get thus far:

cd /opt/cas/workspace/
git clone https://github.com/apereo/cas.git
## There doesn't seem to be a v6.6.11 tag?
git checkout v6.6.10
 
cd /opt/cas/workspace/cas-6.6.11-dev
getcas --directory cas-overlay-template-6.6.11 --type cas-overlay 
--casVersion 6.6.11 --modules 
support-jpa-ticket-registry,support-jpa-service-registry,support-ldap,support-saml,support-duo,support-audit-jdbc,support-aup-ldap,support-aup-webflow
 
## Copy files that we want to customize from cas to the overlay
cp -prnv /opt/cas/workspace/cas/support/cas-server-support-aup-ldap/src/* 
/opt/cas/workspace/cas-6.6.11-dev/cas-overlay-template-6.6.11/src/

## Customize:
# 
cas-overlay-template-6.6.11/src/main/resources/templates/aup/casAcceptableUsagePolicyView.html
# 
cas-overlay-template-6.6.11/src/main/java/org/apereo/cas/aup/LdapAcceptableUsagePolicyRepository.java
 
## Add additional implementations to build.gradle to get rid of "class not 
found" type build errors
#implementation "org.apereo.cas:cas-server-support-aup-core"
#implementation "org.apereo.cas:cas-server-support-ldap-core"
#implementation "org.apereo.cas:cas-server-core-util"
#implementation "org.apereo.cas:cas-server-core-web-api"
  
cd /opt/cas/workspace
cd cas-6.6.11-dev/cas-overlay-template*
./gradlew clean build
 
See build errors above.

Thanks a lot,
Trev

-- 
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines: https://goo.gl/1VRrw7
- Contributions: https://goo.gl/mh7qDG
--- 
You received this message because you are subscribed to the Google Groups "CAS 
Community" group.
To unsubscribe from this group and stop receiving emails from it, send an email 
to cas-user+unsubscr...@apereo.org.
To view this discussion on the web visit 
https://groups.google.com/a/apereo.org/d/msgid/cas-user/e9a56978-7838-40dc-88e0-d60c4a8e5556n%40apereo.org.

Re: [cas-user] ervice registration only allows set of IP addresses?

2022-11-23 Thread Trevor Fong 
Hi Baron

I’ve used the following site in the past to convert cidr’s to regex’s
https://d-fault.nl/cidrtoregex

Good luck,
Trev
On Nov 23, 2022 at 6:02 PM -0800, Baron Fujimoto , wrote:
> I'm afraid my search-fu is failing me with the way the docs are organized 
> now. I'm looking for a way to for a CAS service registration to only allow 
> certain IP addresses (hopefully defined using some reasonable regex or 
> network notation, e.g. CIDR, etc)
>
> Can anyone point me to the right reference(s)?
>
> --
> Baron Fujimoto  ::: UH Information Technology Services
> minutas cantorum, minutas balorum, minutas carboratum descendus pantorum
> --
> - Website: https://apereo.github.io/cas
> - Gitter Chatroom: https://gitter.im/apereo/cas
> - List Guidelines: https://goo.gl/1VRrw7
> - Contributions: https://goo.gl/mh7qDG
> ---
> You received this message because you are subscribed to the Google Groups 
> "CAS Community" group.
> To unsubscribe from this group and stop receiving emails from it, send an 
> email to cas-user+unsubscr...@apereo.org.
> To view this discussion on the web visit 
> https://groups.google.com/a/apereo.org/d/msgid/cas-user/CAAjLUL2Qst16zpeYA%2BkA3TYnFzRANSeKrGvp3uH_KRNoSUvfRg%40mail.gmail.com.

-- 
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines: https://goo.gl/1VRrw7
- Contributions: https://goo.gl/mh7qDG
--- 
You received this message because you are subscribed to the Google Groups "CAS 
Community" group.
To unsubscribe from this group and stop receiving emails from it, send an email 
to cas-user+unsubscr...@apereo.org.
To view this discussion on the web visit 
https://groups.google.com/a/apereo.org/d/msgid/cas-user/49f7a9a2-d925-4140-b2ba-982cae6e2ccb%40Spark.

Re: [cas-user] Re: Older documentation is no longer available

2022-11-01 Thread Trevor Fong 
Having recently done exactly this, +100

On Tue, 1 Nov 2022 at 07:10, 'Richard Frovarp' via CAS Community <
cas-user@apereo.org> wrote:

> On Tue, 2022-11-01 at 09:06 -0400, Mark H. Wood wrote:
> > On Mon, Oct 31, 2022 at 03:25:12PM -0700, Benjamin Bini wrote:
> > > Which project removes documentation as a way to encourage people to
> > > upgrade?
> > > What is the next step? Removing the code from GitHub and removing
> > > artifacts
> > > from online repositories?
> > >
> > > Node.js documentation goes back to 0.0.1 : https://nodejs.org/docs/
> > > Should you use Node 0.0.1? Of course not. But the doc is still
> > > online if
> > > for some reason you need it.
> > > And I took the first example that came to my mind.
> > >
> > > CAS documentation has always be really hard to navigate and
> > > understand,
> > > especially for less experienced developpers.
> > > How are you supposed to upgrade without the documentation from the
> > > version
> > > you're coming from?
> >
> > This is the piece that, I think, has been missing from the discussion
> > until now:  *why* one needs documentation for a prior version.
> >
> > So, you want to upgrade to the latest CAS release.  This means that
> > you need to understand the release that you are running now, so that
> > you can set the new one up to meet the same needs.
> >
> > You have, after many months, gotten everyone to agree to downtime for
> > a vital, cross-cutting service.  Current production is several
> > releases old.  It may have been installed by someone else who has
> > left
> > the organization; it may have been installed by you, but that was a
> > long time and many projects ago.  The new release has *different*
> > configuration properties, and may have been re-organized, so you
> > can't
> > just copy the setup and hope it works.  Even a same-named property
> > may have a subtly different meaning in the new version.
> >
> > So you start reading the old configuration.  What does it all mean?
> > The documentation for that version would help.  The documentation for
> > the new version may in some areas be useless or even misleading
> > w.r.t. the old version.
>
>
> +1
>
> --
> - Website: https://apereo.github.io/cas
> - Gitter Chatroom: https://gitter.im/apereo/cas
> - List Guidelines: https://goo.gl/1VRrw7
> - Contributions: https://goo.gl/mh7qDG
> ---
> You received this message because you are subscribed to the Google Groups
> "CAS Community" group.
> To unsubscribe from this group and stop receiving emails from it, send an
> email to cas-user+unsubscr...@apereo.org.
> To view this discussion on the web visit
> https://groups.google.com/a/apereo.org/d/msgid/cas-user/2f313de36b2ac134c380cd1c838814301d842d1b.camel%40ndsu.edu
> .
>

-- 
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines: https://goo.gl/1VRrw7
- Contributions: https://goo.gl/mh7qDG
--- 
You received this message because you are subscribed to the Google Groups "CAS 
Community" group.
To unsubscribe from this group and stop receiving emails from it, send an email 
to cas-user+unsubscr...@apereo.org.
To view this discussion on the web visit 
https://groups.google.com/a/apereo.org/d/msgid/cas-user/CAFbWT5fjWD3iQ6FeYYdRbzDydTTQqDuhXcT4Az_4uSMEOApzBw%40mail.gmail.com.

[cas-user] Re: Upgrade from CAS 6.5 to 6.6

2022-10-13 Thread Trevor Fong 
Hi Robin,
I'm afraid I don't have a fix for you, but I also experienced these errors 
when trying to upgrade to 6.6.x;  I went to 6.5.8 instead.
Thanks,
Trev
On Wednesday, October 12, 2022 at 1:40:27 PM UTC-7 robin@gmail.com 
wrote:

> Hello,
>
> I'm struggling to upgrade a CAS server from 6.5.9 to 6.6.1. The problem is 
> that service tickets are always invalid. There's an INVALID_TICKET response 
> sent (with "Ticket ... is not recognized") calling serviceValidate.
>
> Here's my environment :
>
> * Debian 11
> * Tomcat 9.0.43 (provided by Debian, managed by Systemd)
> * Java 11 (OpenJDK build 11.0.15+10-post-Debian-1deb11u1)
>
> The CAS server initially relied on a Redis storage for storing tickets but 
> it neither works with the default in-memory storage. TGT are properly 
> stored though but I can't see service tickets.
>
> It looks like there is a regression between `6.6.0-RC5` and `6.6.0` 
> (because 6.6.0-RC5 works but not 6.6.0). I can't manage to find where does 
> it stem from skimming the Git history between these two versions 
> .
>
> Here are the versions tested that *do* work :
>
> * 6.5.5
> * 6.5.9
> * 6.6.0-RC1
> * 6.6.0-RC2
> * 6.6.0-RC5
>
> (6.6.0-RC3 and RC4 seem broken, all services tested are considered 
> unauthorized to use CAS ...)
>
> These versions don't work though :
>
> * 6.6.0
> * 6.6.1
>
> The versions have been tested with the exact same cas-overlay-template ; 
> the gradle.properties has just been changed to modify `version` and 
> `cas.version` (and to stick `springBootVersion` to 2.6.3).
>
> Could you help me debug/fix that please ?
>
> Have a nice day.

-- 
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines: https://goo.gl/1VRrw7
- Contributions: https://goo.gl/mh7qDG
--- 
You received this message because you are subscribed to the Google Groups "CAS 
Community" group.
To unsubscribe from this group and stop receiving emails from it, send an email 
to cas-user+unsubscr...@apereo.org.
To view this discussion on the web visit 
https://groups.google.com/a/apereo.org/d/msgid/cas-user/97a2b2ba-85c7-418b-a46a-eae4a43ccd1cn%40apereo.org.

[cas-user] Re: Migrating Services from 5.2.x to 6.5.x

2022-10-13 Thread Trevor Fong 
Hi Andrea,
Our JPA service registries for 5.2 and 6.5 are both in an Oracle database;
separate schemas.
After a lot of back and forth, I ended up reverse-engineering the 5.2 field
structure and exported just the bits that we needed as JSON fields to the
6.5 database.
The following SQL does the translation we needed.  You might need to tweak
it a bit to do what you need:

insert into registered_services
select
ID,
'{"@class":"org.apereo.cas.services.RegexRegisteredService","serviceId":"'
|| SERVICEID || '","name":"' || NAME || '","id":' || ID ||
',"description":"' || DESCRIPTION ||
'","theme":"ubc_cas","proxyTicketExpirationPolicy":{"@class":"org.apereo.cas.services.DefaultRegisteredServiceProxyTicketExpirationPolicy"},"serviceTicketExpirationPolicy":{"@class":"org.apereo.cas.services.DefaultRegisteredServiceServiceTicketExpirationPolicy"},"singleSignOnParticipationPolicy":{"@class":"org.apereo.cas.services.ChainingRegisteredServiceSingleSignOnParticipationPolicy"},"evaluationOrder":'
|| EVALUATION_ORDER ||
',"singleSignOnParticipationPolicy":{"@class":"org.apereo.cas.services.ChainingRegisteredServiceSingleSignOnParticipationPolicy"},"multifactorPolicy":{"@class":"org.apereo.cas.services.DefaultRegisteredServiceMultifactorPolicy","multifactorAuthenticationProviders":["java.util.HashSet",["mfa-duo"]],"failureMode":"OPEN"'
||
case when regexp_like(to_char(MFA_POLICY),
'^.*bypassEnabled.*principalAttributeValueToMatchq[[:cntrl:]]~[[:cntrl:]][[:cntrl:]]xp'
|| chr(1) || '.*$') then
   ',"bypassEnabled":true'
   --''
else
   ''
end
|| 
'},"attributeReleasePolicy":{"@class":"org.apereo.cas.services.ReturnAllowedAttributeReleasePolicy","allowedAttributes":["java.util.ArrayList",['
||
case when length(substr(ATTRIBUTE_RELEASE, instr(ATTRIBUTE_RELEASE,
'w' || chr(4) || chr(0) || chr(0) || chr(0))+5))=2 then
   ''
else
   regexp_replace(regexp_replace(regexp_replace(substr(ATTRIBUTE_RELEASE,
instr(ATTRIBUTE_RELEASE, 'w' || chr(4) || chr(0) || chr(0) ||
chr(0))+5), 't[[:cntrl:]][[:cntrl:]]', '","'), '^' || chr(9) || '",'),
'.$') || '"'
end
|| ']]}}' as body,
EVALUATION_ORDER,
0 as EVALUATION_PRIORITY,
NAME,
SERVICEID
from cas5_auth.REGEXREGISTEREDSERVICE


Note that "org.apereo.cas.services.RegexRegisteredService" will become
deprecated after 6.6.x so you may need to find out what the
replacement will be.  Currently 6.6.x doesn't work for me as I also
get the "InvalidTicket" errors that someone else noted.

Thanks,

Trev


On Thu, 13 Oct 2022 at 02:48, Andrea Colajacomo <
andrea.colajac...@alecsandria.it> wrote:

> Hi Trevor,
> how do you resolve finally ?
> We have the same situation starting from 6.1 to 6.5
>
> Bye
>
> Il giorno venerdì 3 giugno 2022 alle 22:45:26 UTC+2 Trevor Fong ha scritto:
>
>> Hi Everyone,
>>
>> Along the same lines as
>> https://groups.google.com/a/apereo.org/d/msgid/cas-user/75ef5b42-d3b7-366b-8b5b-c784e578b5a2%40ndsu.edu?utm_medium=email_source=footer
>> - I'm trying to migrate services from a 5.2.x install with a JPA service
>> registry to a 6.5.x JPA service registry.  The database schemas are totally
>> different between the two.  The 6.5.x registered_services table is very
>> straight forward, but the 5.2.x schema consists of several relational
>> tables with some kind of encoding on some of the columns.
>>
>> I've looked at the blog post from Fawnoos but it seems to be for 5.3 -
>> would this be applicable to 5.2?  (
>> https://fawnoos.com/2021/01/19/cas53-service-registry-migration-to-cas63/
>> )
>>
>> Would anyone have any suggestions for migrating services from 5.2.x to
>> 6.5.x?
>> Does anyone know what kind of encoding is applied to the data in 5.2.x?
>> It's not Base64.
>> Perhaps some way to decode and collapse the 5.2.x relational data to
>> 6.5.x format?
>>
>> Thanks a lot,
>> Trev
>>
>

-- 
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines: https://goo.gl/1VRrw7
- Contributions: https://goo.gl/mh7qDG
--- 
You received this message because you are subscribed to the Google Groups "CAS 
Community" group.
To unsubscribe from this group and stop receiving emails from it, send an email 
to cas-user+unsubscr...@apereo.org.
To view this discussion on the web visit 
https://groups.google.com/a/apereo.org/d/msgid/cas-user/CAFbWT5dGQ5xC7BQvAK%3DO%2BHzatTvHjqgHgTzhYreHmgJ2p5Vivg%40mail.gmail.com.

Re: [cas-user] CAS Management 6.5.6 with JPA Service Registry is also writing JSON files

2022-10-03 Thread Trevor Fong 
Thank you so much Fotis and Ray!  
All your help just made my day!!  Your suggestions and directions solved 
this issue for me.

Thanks again,
Trev

On Friday, September 30, 2022 at 2:38:04 AM UTC-7 fme...@uoa.gr wrote:

> Hello Trevor,
>
> I just submitted a PR (https://github.com/apereo/cas-management/pull/247) 
> that backports the fix to the 6.5 version. This should solve your problem 
> in the long term, since the change will be eventually propagated to the 
> management-overlay. If you do not want to wait, you can build the project 
> from the cas-management repo (as you already tried). The process that I 
> personally follow (without claiming it is optimal, it just works for me) is 
> the following.
>
>1. git clone https://github.com/apereo/cas-management.git  
>2. git checkout 6.5.6 
>3. #edit the dependencies.gradle as shown in the PR. 
>4. #edit the ./gradle/webapp.gradle to include the dependencies you 
>need. (ex: implementation 
>"org.apereo.cas:cas-server-support-jpa-service-registry:${casVersion}") 
>5. cd webapp/cas-mgmt-webapp 
>6. ../../gradlew clean build 
>
> You will find the produced war in the webapp/cas-mgmt-webapp/build/libs 
> folder.
>
> Hope it helps,
>
> Fotis
>
> Until then,
> On 30/9/22 08:37, Trevor Fong wrote:
>
>
> Hi Ray, 
>
> Thanks a lot for your reply.  
> > Versioned branches are current for cas-management-overlay.
> Aha - thanks for pointing that out!  Looking at the 6.5 version at 
> https://github.com/apereo/cas-management-overlay/tree/6.5, there is a 
> note:
> "This repository is always automatically generated from the CAS 
> Initializr. Do NOT submit pull requests here as the change-set will be 
> overwritten on the next sync.To learn more, please visit the CAS 
> documentation." 
> so it appears this is the same project as can be generated via "getcas 
> --directory cas-management-overlay-6.5.6 --type cas-management-overlay 
> --casVersion 6.5.6" and then you need to manually add in whatever 
> dependencies you need in build.gradle.
> But as pointed out by Fotis, it looks like the base code that provides 
> the cas-management-overlay-6.5.6 wrongly 
> includes cas-server-support-json-service-registry, preconfigured, so I'll 
> need to figure out how to create my own custom cas-management-overlay from 
> that case code.
>
> Thanks,
> Trev
> On Thursday, September 29, 2022 at 6:22:40 PM UTC-7 Ray Bon wrote:
>
>> Trevor,
>>
>> Only the 'main' branch is not updated. Versioned branches are current for 
>> cas-management-overlay.
>>
>> Ray
>>
>> On Thu, 2022-09-29 at 17:26 -0700, Trevor Fong wrote:
>>
>> Notice: This message was sent from outside the University of Victoria 
>> email system. Please be cautious with links and sensitive information.
>>
>> Hi Fotis, 
>>
>> Thanks a lot for your reply.  How do I remove 
>> the org.apereo.cas:cas-server-support-json-service-registry dependency if 
>> I'm using the CAS Initializr?  Is this possible?'
>> This is what I'm doing so far:
>> getcas --directory cas-management-overlay-6.5.6 --type 
>> cas-management-overlay --casVersion 6.5.6 --modules 
>> support-jpa-service-registry
>> Problem is that cas-management-overlay-6.5.6/gradle does not contain 
>> dependencies.gradle.
>> Copying one in from 
>> https://github.com/apereo/cas-management/blob/6.5.x/gradle/dependencies.gradle
>>  
>> and removing the reference to 
>> org.apereo.cas:cas-server-support-json-service-registry and then doing a 
>> "./gradlew clean build" still produces a cas-management.war that 
>> contains org.apereo.cas:cas-server-support-json-service-registry-6.5.6.jar
>> I'm guessing the starter project is prebuilt with 
>> the cas-server-support-json-service-registry already configured?
>>
>> I've tried building from the code from github but It doesn't seem to 
>> output a "cas-management.war" file like the output from CAS Initilizr:
>> git clone https://github.com/apereo/cas-management.git 
>> git checkout v6.5.6
>> #edit cas-management/gradle/dependencies.gradle
>>
>> I haven't been able to compile a working cas-management webapp this way 
>> so far: running "./gradlew clean build" doesn't produce a 
>> cas-management.war file like the project from "getcas", rather it produces 
>> build/libs/cas-mgmt-6.5.6.jar which is not deployable to tomcat.  Does 
>> anyone know how to produce the war file this way?
>>
>> Upgrading to cas-6.6.0/cas-mangement-6.6.0 via getcas doesn't work for me 
>> - cas-mangement see

Re: [cas-user] CAS Management 6.5.6 with JPA Service Registry is also writing JSON files

2022-09-29 Thread Trevor Fong 

Hi Ray,

Thanks a lot for your reply.  
> Versioned branches are current for cas-management-overlay.
Aha - thanks for pointing that out!  Looking at the 6.5 version 
at https://github.com/apereo/cas-management-overlay/tree/6.5, there is a 
note:
"This repository is always automatically generated from the CAS Initializr. 
Do NOT submit pull requests here as the change-set will be overwritten on 
the next sync.To learn more, please visit the CAS documentation."
so it appears this is the same project as can be generated via "getcas 
--directory cas-management-overlay-6.5.6 --type cas-management-overlay 
--casVersion 6.5.6" and then you need to manually add in whatever 
dependencies you need in build.gradle.
But as pointed out by Fotis, it looks like the base code that provides 
the cas-management-overlay-6.5.6 wrongly 
includes cas-server-support-json-service-registry, preconfigured, so I'll 
need to figure out how to create my own custom cas-management-overlay from 
that case code.

Thanks,
Trev
On Thursday, September 29, 2022 at 6:22:40 PM UTC-7 Ray Bon wrote:

> Trevor,
>
> Only the 'main' branch is not updated. Versioned branches are current for 
> cas-management-overlay.
>
> Ray
>
> On Thu, 2022-09-29 at 17:26 -0700, Trevor Fong wrote:
>
> Notice: This message was sent from outside the University of Victoria 
> email system. Please be cautious with links and sensitive information.
>
> Hi Fotis, 
>
> Thanks a lot for your reply.  How do I remove 
> the org.apereo.cas:cas-server-support-json-service-registry dependency if 
> I'm using the CAS Initializr?  Is this possible?'
> This is what I'm doing so far:
> getcas --directory cas-management-overlay-6.5.6 --type 
> cas-management-overlay --casVersion 6.5.6 --modules 
> support-jpa-service-registry
> Problem is that cas-management-overlay-6.5.6/gradle does not contain 
> dependencies.gradle.
> Copying one in from 
> https://github.com/apereo/cas-management/blob/6.5.x/gradle/dependencies.gradle
>  
> and removing the reference to 
> org.apereo.cas:cas-server-support-json-service-registry and then doing a 
> "./gradlew clean build" still produces a cas-management.war that 
> contains org.apereo.cas:cas-server-support-json-service-registry-6.5.6.jar
> I'm guessing the starter project is prebuilt with 
> the cas-server-support-json-service-registry already configured?
>
> I've tried building from the code from github but It doesn't seem to 
> output a "cas-management.war" file like the output from CAS Initilizr:
> git clone https://github.com/apereo/cas-management.git 
> git checkout v6.5.6
> #edit cas-management/gradle/dependencies.gradle
>
> I haven't been able to compile a working cas-management webapp this way so 
> far: running "./gradlew clean build" doesn't produce a cas-management.war 
> file like the project from "getcas", rather it produces 
> build/libs/cas-mgmt-6.5.6.jar which is not deployable to tomcat.  Does 
> anyone know how to produce the war file this way?
>
> Upgrading to cas-6.6.0/cas-mangement-6.6.0 via getcas doesn't work for me 
> - cas-mangement seems to login OK, but then freezes at the "Loading..." 
> page with no errors in the logs.
> cas-6.5.8/cas-mangement-6.5.6 via getcas does work, but with 
> org.apereo.cas:cas-server-support-json-service-registry-6.5.6.jar still 
> present.
>
> BTW - https://github.com/apereo/cas-management-overlay seems to be 
> defunct with no updates since Jan 20, 2021 - 
> https://github.com/apereo/cas-management seems to the current focus,
>
> Thanks,
> Trevor
> On Thursday, September 29, 2022 at 1:18:36 AM UTC-7 fme...@uoa.gr wrote:
>
> Hello Trevor, 
>
> The problem you face lies here 
>
> https://github.com/apereo/cas-management/blob/6.5.x/gradle/dependencies.gradle#L797
>
>
> The json service registry has been wrongly included as a core dependency 
> in the dependencies.gradle. This ensures that the relative jar will be 
> included in your build despite the fact that you have not personally 
> included the dependency in your build.gradle file. 
>
> I have fixed the issue in the 6.6 version of the management app with a 
> simple PR (https://github.com/apereo/cas-management/pull/246). I have not 
> sumbitted the same PR for version 6.5 and 6.4 because I do not know the 
> CAS policy regarding backports. 
>
> Kind regards, 
>
> Fotis 
>
> > Trevor, 
> > 
> > Make sure you are not including the JSON module, 
> > https://apereo.github.io/cas/6.5.x/services/JSON-Service-Management.html 
> > 
> > Next, try this: 
> > 
> > cas.serviceRegistry.initFromJson=false 
> > 
> > or less likely: 
> > 
> > mgmt.versionControl.e

Re: [cas-user] CAS Management 6.5.6 with JPA Service Registry is also writing JSON files

2022-09-29 Thread Trevor Fong 
Hi Fotis,

Thanks a lot for your reply.  How do I remove 
the org.apereo.cas:cas-server-support-json-service-registry dependency if 
I'm using the CAS Initializr?  Is this possible?'
This is what I'm doing so far:
getcas --directory cas-management-overlay-6.5.6 --type 
cas-management-overlay --casVersion 6.5.6 --modules 
support-jpa-service-registry
Problem is that cas-management-overlay-6.5.6/gradle does not contain 
dependencies.gradle.
Copying one in 
from 
https://github.com/apereo/cas-management/blob/6.5.x/gradle/dependencies.gradle 
and removing the reference to 
org.apereo.cas:cas-server-support-json-service-registry and then doing a 
"./gradlew clean build" still produces a cas-management.war that 
contains org.apereo.cas:cas-server-support-json-service-registry-6.5.6.jar
I'm guessing the starter project is prebuilt with 
the cas-server-support-json-service-registry already configured?

I've tried building from the code from github but It doesn't seem to output 
a "cas-management.war" file like the output from CAS Initilizr:
git clone https://github.com/apereo/cas-management.git 
git checkout v6.5.6
#edit cas-management/gradle/dependencies.gradle

I haven't been able to compile a working cas-management webapp this way so 
far: running "./gradlew clean build" doesn't produce a cas-management.war 
file like the project from "getcas", rather it produces 
build/libs/cas-mgmt-6.5.6.jar which is not deployable to tomcat.  Does 
anyone know how to produce the war file this way?

Upgrading to cas-6.6.0/cas-mangement-6.6.0 via getcas doesn't work for me - 
cas-mangement seems to login OK, but then freezes at the "Loading..." page 
with no errors in the logs.
cas-6.5.8/cas-mangement-6.5.6 via getcas does work, but with 
org.apereo.cas:cas-server-support-json-service-registry-6.5.6.jar still 
present.

BTW - https://github.com/apereo/cas-management-overlay seems to be defunct 
with no updates since Jan 20, 2021 
- https://github.com/apereo/cas-management seems to the current focus,

Thanks,
Trevor
On Thursday, September 29, 2022 at 1:18:36 AM UTC-7 fme...@uoa.gr wrote:

> Hello Trevor,
>
> The problem you face lies here
>
> https://github.com/apereo/cas-management/blob/6.5.x/gradle/dependencies.gradle#L797
>
> The json service registry has been wrongly included as a core dependency
> in the dependencies.gradle. This ensures that the relative jar will be
> included in your build despite the fact that you have not personally
> included the dependency in your build.gradle file.
>
> I have fixed the issue in the 6.6 version of the management app with a
> simple PR (https://github.com/apereo/cas-management/pull/246). I have not
> sumbitted the same PR for version 6.5 and 6.4 because I do not know the
> CAS policy regarding backports.
>
> Kind regards,
>
> Fotis
>
> > Trevor,
> >
> > Make sure you are not including the JSON module,
> > https://apereo.github.io/cas/6.5.x/services/JSON-Service-Management.html
> >
> > Next, try this:
> >
> > cas.serviceRegistry.initFromJson=false
> >
> > or less likely:
> >
> > mgmt.versionControl.enabled=false
> >
> > Ray
> >
> > On Wed, 2022-09-28 at 15:15 -0700, Trevor Fong wrote:
> > Notice: This message was sent from outside the University of Victoria
> > email system. Please be cautious with links and sensitive information.
> >
> > Hi There,
> > I'm trying to set up a fresh CAS Management 6.5.6 instance for dev and
> > have set it up for JPA based service registry, but it is also writing out
> > created/updated services as JSON files. The result is that every
> > created/updated record is repeated in the UI. Does anyone know how to
> > turn off the file-base JSON functionality? Here're my service-registry
> > properties:
> >
> > cas.service-registry.jpa.enabled=true
> > cas.service-registry.jpa.user=REDACTED
> > cas.service-registry.jpa.password=REDACTED
> > cas.service-registry.jpa.driverClass=oracle.jdbc.OracleDriver
> > cas.service-registry.jpa.url=jdbc:oracle:thin:@REDACTED:REDACTED:REDACTED
> > cas.service-registry.jpa.dialect=org.hibernate.dialect.Oracle12cDialect
> > cas.service-registry.jpa.leakThreshold=10
> > cas.service-registry.jpa.batchSize=1
> > cas.service-registry.jpa.autocommit=false
> > cas.service-registry.jpa.idle-timeout=5000
> > cas.service-registry.jpa.fail-fast-timeout=1
> > cas.service-registry.jpa.health-query=SELECT 1 FROM DUAL
> > cas.service-registry.jpa.isolate-internal-queries=false
> > cas.service-registry.jpa.pool.suspension=false
> > cas.service-registry.jpa.pool.minSize=2
> > cas.service-registry.jpa.pool.maxSize=5
> > cas.service-registry.jpa.pool.maxWait=2000
> > cas.s

Re: [cas-user] CAS Management 6.5.6 with JPA Service Registry is also writing JSON files

2022-09-29 Thread Trevor Fong 
Hi Fotis,

Thanks a lot for your reply.  How do I remove the 
org.apereo.cas:cas-server-support-json-service-registry dependency if I'm 
using the CAS Initializr?
This is what I'm doing so far:
getcas --directory cas-management-overlay-6.5.6 --type 
cas-management-overlay --casVersion 6.5.46--modules 
support-jpa-service-registry

Thanks,
Trev

On Thursday, September 29, 2022 at 1:18:36 AM UTC-7 fme...@uoa.gr wrote:

> Hello Trevor,
>
> The problem you face lies here
>
> https://github.com/apereo/cas-management/blob/6.5.x/gradle/dependencies.gradle#L797
>
> The json service registry has been wrongly included as a core dependency
> in the dependencies.gradle. This ensures that the relative jar will be
> included in your build despite the fact that you have not personally
> included the dependency in your build.gradle file.
>
> I have fixed the issue in the 6.6 version of the management app with a
> simple PR (https://github.com/apereo/cas-management/pull/246). I have not
> sumbitted the same PR for version 6.5 and 6.4 because I do not know the
> CAS policy regarding backports.
>
> Kind regards,
>
> Fotis
>
> > Trevor,
> >
> > Make sure you are not including the JSON module,
> > https://apereo.github.io/cas/6.5.x/services/JSON-Service-Management.html
> >
> > Next, try this:
> >
> > cas.serviceRegistry.initFromJson=false
> >
> > or less likely:
> >
> > mgmt.versionControl.enabled=false
> >
> > Ray
> >
> > On Wed, 2022-09-28 at 15:15 -0700, Trevor Fong wrote:
> > Notice: This message was sent from outside the University of Victoria
> > email system. Please be cautious with links and sensitive information.
> >
> > Hi There,
> > I'm trying to set up a fresh CAS Management 6.5.6 instance for dev and
> > have set it up for JPA based service registry, but it is also writing out
> > created/updated services as JSON files. The result is that every
> > created/updated record is repeated in the UI. Does anyone know how to
> > turn off the file-base JSON functionality? Here're my service-registry
> > properties:
> >
> > cas.service-registry.jpa.enabled=true
> > cas.service-registry.jpa.user=REDACTED
> > cas.service-registry.jpa.password=REDACTED
> > cas.service-registry.jpa.driverClass=oracle.jdbc.OracleDriver
> > cas.service-registry.jpa.url=jdbc:oracle:thin:@REDACTED:REDACTED:REDACTED
> > cas.service-registry.jpa.dialect=org.hibernate.dialect.Oracle12cDialect
> > cas.service-registry.jpa.leakThreshold=10
> > cas.service-registry.jpa.batchSize=1
> > cas.service-registry.jpa.autocommit=false
> > cas.service-registry.jpa.idle-timeout=5000
> > cas.service-registry.jpa.fail-fast-timeout=1
> > cas.service-registry.jpa.health-query=SELECT 1 FROM DUAL
> > cas.service-registry.jpa.isolate-internal-queries=false
> > cas.service-registry.jpa.pool.suspension=false
> > cas.service-registry.jpa.pool.minSize=2
> > cas.service-registry.jpa.pool.maxSize=5
> > cas.service-registry.jpa.pool.maxWait=2000
> > cas.service-registry.jpa.ddl-auto=validate
> >
> > cas.service-registry.yaml.watcherEnabled=false
> > cas.service-registry.json.watcherEnabled=false
> > cas.service-registry.core.init-from-json=false
> > #cas.serviceRegistry.core.initFromJson=true
> > #cas.serviceRegistry.json.location=file:/etc/cas/config/services
> >
> > Thanks a lot,
> > Trevor
> >
> >
> > --
> > - Website: https://apereo.github.io/cas
> > - Gitter Chatroom: https://gitter.im/apereo/cas
> > - List Guidelines: https://goo.gl/1VRrw7
> > - Contributions: https://goo.gl/mh7qDG
> > ---
> > You received this message because you are subscribed to the Google Groups
> > "CAS Community" group.
> > To unsubscribe from this group and stop receiving emails from it, send an
> > email to cas-user+u...@apereo.org.
> > To view this discussion on the web visit
> > 
> https://groups.google.com/a/apereo.org/d/msgid/cas-user/a0da141c420cc800814440788ab02b98600fe926.camel%40uvic.ca
> .
> >
>
>
>

-- 
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines: https://goo.gl/1VRrw7
- Contributions: https://goo.gl/mh7qDG
--- 
You received this message because you are subscribed to the Google Groups "CAS 
Community" group.
To unsubscribe from this group and stop receiving emails from it, send an email 
to cas-user+unsubscr...@apereo.org.
To view this discussion on the web visit 
https://groups.google.com/a/apereo.org/d/msgid/cas-user/f9c67b95-bf94-4ecc-b945-36a971e4822cn%40apereo.org.

[cas-user] CAS Management 6.5.6 with JPA Service Registry is also writing JSON files

2022-09-28 Thread Trevor Fong 
Hi There,
I'm trying to set up a fresh CAS Management 6.5.6 instance for dev and have 
set it up for JPA based service registry, but it is also writing out 
created/updated services as JSON files.  The result is that every 
created/updated record is repeated in the UI.  Does anyone know how to turn 
off the file-base JSON functionality?  Here're my service-registry 
properties:

cas.service-registry.jpa.enabled=true
cas.service-registry.jpa.user=REDACTED
cas.service-registry.jpa.password=REDACTED
cas.service-registry.jpa.driverClass=oracle.jdbc.OracleDriver
cas.service-registry.jpa.url=jdbc:oracle:thin:@REDACTED:REDACTED:REDACTED
cas.service-registry.jpa.dialect=org.hibernate.dialect.Oracle12cDialect
cas.service-registry.jpa.leakThreshold=10
cas.service-registry.jpa.batchSize=1
cas.service-registry.jpa.autocommit=false
cas.service-registry.jpa.idle-timeout=5000
cas.service-registry.jpa.fail-fast-timeout=1
cas.service-registry.jpa.health-query=SELECT 1 FROM DUAL
cas.service-registry.jpa.isolate-internal-queries=false
cas.service-registry.jpa.pool.suspension=false
cas.service-registry.jpa.pool.minSize=2
cas.service-registry.jpa.pool.maxSize=5
cas.service-registry.jpa.pool.maxWait=2000
cas.service-registry.jpa.ddl-auto=validate

cas.service-registry.yaml.watcherEnabled=false
cas.service-registry.json.watcherEnabled=false
cas.service-registry.core.init-from-json=false
#cas.serviceRegistry.core.initFromJson=true
#cas.serviceRegistry.json.location=file:/etc/cas/config/services

Thanks a lot,
Trevor

-- 
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines: https://goo.gl/1VRrw7
- Contributions: https://goo.gl/mh7qDG
--- 
You received this message because you are subscribed to the Google Groups "CAS 
Community" group.
To unsubscribe from this group and stop receiving emails from it, send an email 
to cas-user+unsubscr...@apereo.org.
To view this discussion on the web visit 
https://groups.google.com/a/apereo.org/d/msgid/cas-user/5e3ba26e-08e1-4f11-94b3-f9e7bccb3d29n%40apereo.org.

Re: [cas-user] Re: Migrating services from version 5 to 6

2022-06-15 Thread Trevor Fong 
Thanks a lot for your reply Francois.

Dammit - that sucks that we both had such a poor experience!
I fear you might be right and I'll have to abandon the 300+ rules we've
built up over the years due to inadequate support and documentation; it's
not like they discontinued support for JPA - they just didn't provide any
support at all for migration, which feels worse!  It's like saying "Sure
you can do it, see all the cool things you can do" and not say how to do
it.
I'll give myself to the end of the week and "cut bait" if I can't find a
way out.  I'll reply if I should find anything of use.

Thanks again,
Trev

On Wed, 15 Jun 2022 at 08:11, fjannin4  wrote:

> Hi Trev
>
> Alas I didn't found anything to simply convert structured data from JPA to
> JSON... It was too tedious and time consuming and I gave up... None of cues
> and hints was working.
>
> The whole online documentation of CAS 5.x has been removed (i have never
> seen so many Google results issueing 404 errors... dunno why they don't
> remove links ?) , to enforce difficulty to find relevant informations, and
> I mess up working with partial remains in webarchives.
>
> Instead I am going to replace my fine tuned granularity of service
> descriptions with one wildcard by domains name of internal applications, in
> JSON format, the only one that really has support from CAS Team and
> documented.
>
> Doing this therefore, I will lost all level of details for each service :
> descriptions, logo and contacts, thas was before used in CAS and CAS
> management application...
>
> High price to paid, just for CAS developpers team's taste to follow the
> fahsion for JSON and unilateral deprection for JPA ...
>
> So, to keep your CAS installation working is a question of chance : if you
> bet on the good techno that wil survive to annual elegation, you won... We
> bet on JPA and lost...
> Good luck !
> Regards
>
> Le 10/06/2022 à 19:45, Trevor Fong a écrit :
>
> Hi Francois,
>
> Just wondering if you were able to resolve your situation and if so, how?
> I'm also facing a similar thing.
>
> Thanks a lot,
> Trev
>
> On Thursday, March 31, 2022 at 10:54:41 AM UTC-7 fjan...@gmail.com wrote:
>
>> Thank you for the response.
>>
>> We actually use CAS Management application, and I will follow your
>> suggestion.
>>
>> We have a bunch of services  to migrate : 140+, with their own contacts,
>> policies and release attriibute settings.
>>
>> I have tried the actuator end point /services from CAS Server , wich
>> export all services in one file, but  JSON format seems different from the
>> import format used in CAS 6.4.
>>
>> i will try the management application way, with hopefully more success...
>>
>> Best regards
>>
>> Francois
>> Le 31/03/2022 à 17:35, 'Richard Frovarp' via CAS Community a écrit :
>>
>> The tables in the post are for the service registry. If you don't migrate
>> those, you will have to reconfigure from scratch.
>>
>> I do not know what the plans are for the project with respect to the
>> service registry. It's changed a bit between versions, and usually seems
>> like a pain. We made the change in a previous upgrade to just drop JSON
>> files on the filesystem and have CAS pick those up. It keeps us free of
>> changes in the JPA method (which we had been using), and free from
>> management app changes. In addition, we can keep service configuration in
>> git, which is extremely nice.
>>
>> What I gather from that post is you are going to need to change the
>> source code of RegisteredServicesReportController either changing that
>> method, or adding that method. Looks like it is adding the method. Compile,
>> put into your deployment (or download your DB and run locally), and then
>> hit that point to get the exported JSON services. If you are running the
>> management application in 5.3, I think you can export services as JSON as
>> well, just by clicking a bunch of times and possibly doing copy and paste.
>> Depending on your number of services, it might be simpler to just export
>> via the management application, which I'm assuming that you are using. That
>> would save you from editing code and having to deploy a new class file.
>>
>> Richard
>>
>> On 3/31/22 09:32, Pablo Vidaurri wrote:
>>
>> There is no need to migrate the data. These tables are for various type
>> of tickets. Worst case when you cut over to v6.4 your users will have to
>> login again.
>>
>> -psv
>>
>>
>> On Wednesday, March 30, 2022 at 9:43:58 AM UTC-5 fjan...@gmail.com wrote:
>>
>>> Hi,
>>&g

Re: [cas-user] Re: Migrating services from version 5 to 6

2022-06-10 Thread Trevor Fong 
Hi Francois,

Just wondering if you were able to resolve your situation and if so, how?  
I'm also facing a similar thing.  

Thanks a lot,
Trev

On Thursday, March 31, 2022 at 10:54:41 AM UTC-7 fjan...@gmail.com wrote:

> Thank you for the response.
>
> We actually use CAS Management application, and I will follow your 
> suggestion.
>
> We have a bunch of services  to migrate : 140+, with their own contacts, 
> policies and release attriibute settings.
>
> I have tried the actuator end point /services from CAS Server , wich 
> export all services in one file, but  JSON format seems different from the 
> import format used in CAS 6.4.
>
> i will try the management application way, with hopefully more success... 
>
> Best regards
>
> Francois
> Le 31/03/2022 à 17:35, 'Richard Frovarp' via CAS Community a écrit :
>
> The tables in the post are for the service registry. If you don't migrate 
> those, you will have to reconfigure from scratch. 
>
> I do not know what the plans are for the project with respect to the 
> service registry. It's changed a bit between versions, and usually seems 
> like a pain. We made the change in a previous upgrade to just drop JSON 
> files on the filesystem and have CAS pick those up. It keeps us free of 
> changes in the JPA method (which we had been using), and free from 
> management app changes. In addition, we can keep service configuration in 
> git, which is extremely nice.
>
> What I gather from that post is you are going to need to change the source 
> code of RegisteredServicesReportController either changing that method, or 
> adding that method. Looks like it is adding the method. Compile, put into 
> your deployment (or download your DB and run locally), and then hit that 
> point to get the exported JSON services. If you are running the management 
> application in 5.3, I think you can export services as JSON as well, just 
> by clicking a bunch of times and possibly doing copy and paste. Depending 
> on your number of services, it might be simpler to just export via the 
> management application, which I'm assuming that you are using. That would 
> save you from editing code and having to deploy a new class file.
>
> Richard
>
> On 3/31/22 09:32, Pablo Vidaurri wrote:
>
> There is no need to migrate the data. These tables are for various type of 
> tickets. Worst case when you cut over to v6.4 your users will have to login 
> again. 
>
> -psv
>
>
> On Wednesday, March 30, 2022 at 9:43:58 AM UTC-5 fjan...@gmail.com wrote:
>
>> Hi, 
>>
>> I need to migrate JPA service registry  from Apereo CAS  5.2.2 to 6.4, 
>> but in this last version , data structures seem to have been replaced by 
>> just one table with flat JSON field in a column : no more relationnal 
>> structure, or I missed something. 
>> Has anyone here observe the same ? 
>> If the JPA migration is not possible, does it mean I have to use JSON in 
>> any way ? 
>>
>> The best hit had met my searches till now is this page : 
>> https://fawnoos.com/2021/01/19/cas53-service-registry-migration-to-cas63/ 
>> But its content is pretty elliptic and I don't see where to apply the 
>> snippet showed in it :  I have an installation based on cas-overlay,  
>> there is no  java file named RegisteredServicesReportController to 
>> override... 
>>
>> In short my purpose is as follow : migration services from JPA to JSON 
>>
>> Does anyone faced the same issue ? 
>>
>> Thanks a lot for any clue. 
>>
>>
>> -- 
> - Website: https://apereo.github.io/cas
> - Gitter Chatroom: https://gitter.im/apereo/cas
> - List Guidelines: https://goo.gl/1VRrw7
> - Contributions: https://goo.gl/mh7qDG
> --- 
> You received this message because you are subscribed to the Google Groups 
> "CAS Community" group.
> To unsubscribe from this group and stop receiving emails from it, send an 
> email to cas-user+u...@apereo.org.
> To view this discussion on the web visit 
> https://groups.google.com/a/apereo.org/d/msgid/cas-user/133c5bb4-c6cd-4ec6-bf46-e1deaad1ffc4n%40apereo.org
>  
> 
> .
>
>
> -- 
> - Website: https://apereo.github.io/cas
> - Gitter Chatroom: https://gitter.im/apereo/cas
> - List Guidelines: https://goo.gl/1VRrw7
> - Contributions: https://goo.gl/mh7qDG
> --- 
> You received this message because you are subscribed to the Google Groups 
> "CAS Community" group.
> To unsubscribe from this group and stop receiving emails from it, send an 
> email to cas-user+u...@apereo.org.
>
> To view this discussion on the web visit 
> https://groups.google.com/a/apereo.org/d/msgid/cas-user/75ef5b42-d3b7-366b-8b5b-c784e578b5a2%40ndsu.edu
>  
> 
> .
>
>

-- 
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines:

[cas-user] Migrating Services from 5.2.x to 6.5.x

2022-06-03 Thread Trevor Fong 
Hi Everyone,

Along the same lines as 
https://groups.google.com/a/apereo.org/d/msgid/cas-user/75ef5b42-d3b7-366b-8b5b-c784e578b5a2%40ndsu.edu?utm_medium=email_source=footer
 
- I'm trying to migrate services from a 5.2.x install with a JPA service 
registry to a 6.5.x JPA service registry.  The database schemas are totally 
different between the two.  The 6.5.x registered_services table is very 
straight forward, but the 5.2.x schema consists of several relational 
tables with some kind of encoding on some of the columns.  

I've looked at the blog post from Fawnoos but it seems to be for 5.3 - 
would this be applicable to 5.2?  (
https://fawnoos.com/2021/01/19/cas53-service-registry-migration-to-cas63/)

Would anyone have any suggestions for migrating services from 5.2.x to 
6.5.x?  
Does anyone know what kind of encoding is applied to the data in 5.2.x?  
It's not Base64.
Perhaps some way to decode and collapse the 5.2.x relational data to 6.5.x 
format?

Thanks a lot,
Trev

-- 
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines: https://goo.gl/1VRrw7
- Contributions: https://goo.gl/mh7qDG
--- 
You received this message because you are subscribed to the Google Groups "CAS 
Community" group.
To unsubscribe from this group and stop receiving emails from it, send an email 
to cas-user+unsubscr...@apereo.org.
To view this discussion on the web visit 
https://groups.google.com/a/apereo.org/d/msgid/cas-user/dfe7833f-b503-4be5-9bf5-f7526fe2d18an%40apereo.org.

Re: [cas-user] Assistance building CAS Management Overlay, "Could not find org.apereo.cas:cas-server-support-bom:."

2022-05-30 Thread Trevor Fong 
Hi Joe,
I ran into the same problem myself.
The problem was that "cas.version" was set to nothing in gradle.properties
(ie "cas.version=").
To get it to compile I had to do the following (on MacOS/bash):

setjdk 11
getcas --directory cas-management-overlay-6.5.4 --type
cas-management-overlay --casVersion 6.5.4
cd directory cas-management-overlay-6.5.4
sed -i .orig 's/^cas\.version=.*/cas\.version=6\.5\.4/g' gradle.properties
./gradlew clean build

---
BTW, here's a handy function if you have to run multiple JDK's:
function setjdk() {
  if [ $# -ne 0 ]; then
   removeFromPath '/System/Library/Frameworks/JavaVM.framework/Home/bin'
   if [ -n "${JAVA_HOME+x}" ]; then
removeFromPath $JAVA_HOME
   fi
   export JAVA_HOME=`/usr/libexec/java_home -v $@`
   export PATH=$JAVA_HOME/bin:$PATH
  fi
 }

Thanks,
Trev

On Fri, 27 May 2022 at 21:30, Joe Gullo  wrote:

> i will try that, but getcas is one of the recommended ways to build the
> overlay.  We're successfully using it for the other projects.  You can see
> the doc on it here, it works well for the configserver and the regular cas
> overlay template:
>
> https://apereo.github.io/cas/6.5.x/installation/WAR-Overlay-Initializr.html
>
> On Friday, May 27, 2022 at 1:53:06 PM UTC-7 Ray Bon wrote:
>
>> Joe,
>>
>> git clone https://github.com/apereo/cas-management-overlay.git
>> cd cas-management-overlay/
>> git fetch origin 6.5
>> git checkout 6.5
>> ./gradlew clean build
>>
>> What is getcas?
>>
>> Perhaps what you were attempting was building the main project. That is
>> for developers, deployers use the overlays.
>>
>> Ray
>>
>> On Fri, 2022-05-27 at 09:02 -0700, Joe Gullo wrote:
>>
>> Notice: This message was sent from outside the University of Victoria
>> email system. Please be cautious with links and sensitive information.
>>
>>
>> I've been trying to build CAS Management Overlay, but I'm finding the
>> documentation a bit difficult to follow.  My understanding is it should
>> produce a standalone war, correct?I have a deployment procedure that
>> follows this:
>>
>> cd /opt/cas
>> rm -Rf /opt/cas/cas-management.orgname
>> getcas --directory cas-management.orgname --casVersion 6.5.3 --type
>> cas-management-overlay
>> cd -orgname
>> cd /opt/cas/cas-management.orgname/
>> chown -R casadmin:casadmin /opt/cas/cas-management.orgname
>> sudo -u casadmin ./gradlew clean build
>>
>> This fails with the following:
>>
>> * What went wrong:
>> Execution failed for task ':compileJava'.
>> > Could not resolve all files for configuration ':compileClasspath'.
>>> Could not find org.apereo.cas:cas-server-support-bom:.
>>  Required by:
>>  project :
>>
>> I've seen some other people building this and looking at their
>> procedures, it leads me to believe I need to download the actual
>> cas-overlay to the same directory before attempting to build, or is
>> something just wrong with the build environment?  I haven't seen much about
>> building it in the documentation.
>>
>> --
>>
>> Ray Bon
>> Programmer Analyst
>> Development Services, University Systems
>> 2507218831 <(250)%20721-8831> | CLE 019 | rb...@uvic.ca
>>
>> I acknowledge and respect the lək̓ʷəŋən peoples on whose traditional
>> territory the university stands, and the Songhees, Esquimalt and WSÁNEĆ
>> peoples whose historical relationships with the land continue to this day.
>>
> --
> - Website: https://apereo.github.io/cas
> - Gitter Chatroom: https://gitter.im/apereo/cas
> - List Guidelines: https://goo.gl/1VRrw7
> - Contributions: https://goo.gl/mh7qDG
> ---
> You received this message because you are subscribed to the Google Groups
> "CAS Community" group.
> To unsubscribe from this group and stop receiving emails from it, send an
> email to cas-user+unsubscr...@apereo.org.
> To view this discussion on the web visit
> https://groups.google.com/a/apereo.org/d/msgid/cas-user/7c5b85d2-12f9-4ecc-af35-7904f8893960n%40apereo.org
> 
> .
>

-- 
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines: https://goo.gl/1VRrw7
- Contributions: https://goo.gl/mh7qDG
--- 
You received this message because you are subscribed to the Google Groups "CAS 
Community" group.
To unsubscribe from this group and stop receiving emails from it, send an email 
to cas-user+unsubscr...@apereo.org.
To view this discussion on the web visit 
https://groups.google.com/a/apereo.org/d/msgid/cas-user/CAFbWT5e7jBxFSVxFk3B-J4e%2BOK2HasNf2z5iVeyz-zv5fTiDVA%40mail.gmail.com.

Re: [cas-user] CAS Management 6.5.2

2022-05-25 Thread Trevor Fong 
Thanks a lot Ray,

That was the prompt I needed!  I managed to get cas-management to start
working by updating my stock Tomcat 9's server.xml:
I commented out the default Connector on port 8080 and replaced it with the
following:




Now to squash the next set of gremlins...

Thanks again,
Trev

On Wed, 25 May 2022 at 15:47, Trevor Fong  wrote:

> Hi Ray,
>
> Thanks very much for your response.
>
> It's before authentication - the redirection happens as soon as I GET
> https://my.cas.server/cas-management
> Here's a DEBUG log of it happening right after I do a GET on
> https://my.cas.server/cas-management via my browser:
>
> 2022-05-25 14:48:13,815 INFO
> [org.springframework.web.servlet.DispatcherServlet] -  'dispatcherServlet'>
> 2022-05-25 14:48:13,815 DEBUG
> [org.springframework.web.servlet.DispatcherServlet] -  StandardServletMultipartResolver>
> 2022-05-25 14:48:13,815 DEBUG
> [org.springframework.web.servlet.DispatcherServlet] -  AcceptHeaderLocaleResolver>
> 2022-05-25 14:48:13,815 DEBUG
> [org.springframework.web.servlet.DispatcherServlet] -  FixedThemeResolver>
> 2022-05-25 14:48:13,817 DEBUG
> [org.springframework.web.servlet.DispatcherServlet] -  org.springframework.web.servlet.view.DefaultRequestToViewNameTranslator@43a5b282
> >
> 2022-05-25 14:48:13,818 DEBUG
> [org.springframework.web.servlet.DispatcherServlet] -  org.springframework.web.servlet.support.SessionFlashMapManager@3133cb27>
> 2022-05-25 14:48:13,818 DEBUG
> [org.springframework.web.servlet.DispatcherServlet] -
>  be masked to prevent unsafe logging of potentially sensitive data>
> 2022-05-25 14:48:13,818 INFO
> [org.springframework.web.servlet.DispatcherServlet] -  initialization in 3 ms>
> 2022-05-25 14:48:13,832 DEBUG
> [org.springframework.security.web.FilterChainProxy] - 
> 2022-05-25 14:48:13,834 DEBUG
> [org.springframework.security.web.access.channel.ChannelProcessingFilter] -
>  [REQUIRES_SECURE_CHANNEL]>
> 2022-05-25 14:48:13,834 DEBUG
> [org.springframework.security.web.access.channel.RetryWithHttpsEntryPoint]
> - https://localhost:8443/cas-management/>
> 2022-05-25 14:48:13,834 DEBUG
> [org.springframework.security.web.DefaultRedirectStrategy] -  to https://localhost:8443/cas-management/>
>
> Thanks,
> Trev
>
> On Wed, 25 May 2022 at 15:10, Ray Bon  wrote:
>
>> Trev,
>>
>> Are you being redirected to localhost after log in or when you access
>> https://my.server.../cas-management?
>>
>> If it is before, then this could be an issue with the application
>> container.
>> If it is after, it may be in the service definition for cas-management.
>>
>> Ray
>>
>> On Wed, 2022-05-25 at 14:25 -0700, Trevor Fong wrote:
>>
>> Notice: This message was sent from outside the University of Victoria
>> email system. Please be cautious with links and sensitive information.
>>
>> Hi Everyone,
>>
>> In an attempt to resolve my CAS Management issues, I've now upgraded to
>> 6.5.3 and am deploying via CASInitializr, all to no avail, still!:
>> # getcas --type cas-overlay --casVersion 6.5.3 --modules
>> support-jpa-ticket-registry,support-jpa-service-registry,support-ldap,support-saml,support-duo,support-audit-jdbc
>> # getcas getcas --type cas-management-overlay --casVersion 6.5.3
>> After "./gradlew clean build" for both, I'm then deploying the resulting
>> cas.war and cas-management.war files to a Tomcat 9 instance.
>>
>> My /etc/cas/config/management.properties is:
>> cas.server.name=https://my.server.name
>> cas.server.prefix=https://my.server.name/cas
>>
>> # Update this URL to point at server running this management app
>> mgmt.server-name=https://my.server.name
>>
>> mgmt.user-properties-file=file:/etc/cas/config/users.json
>> mgmt.admin-roles[0]=ROLE_ADMIN
>> mgmt.user-roles[0]=ROLE_USER
>>
>> server.servlet.context-path=/cas-management
>> server.port=8080
>>
>> logging.config=file:/etc/cas/config/log4j2-management.xml
>> ...
>>
>> When I try to load https://my.server.name/cas-management I still get
>> redirected to http://localhost:8443/cas-management
>>
>> Any help would be greatly appreciated.
>>
>> Thanks,
>> Trev
>>
>>
>> On Tuesday, May 17, 2022 at 1:55:00 PM UTC-7 Trevor Fong wrote:
>>
>> Hi Mathieu
>>
>> Yes - I do have an /etc/cas/config/management.properties file.  From my
>> initial message:
>> “
>>
>> In the /etc/cas/config/management.properties I have the following
>> configured:
>> cas.server.name=https://
>> cas.server.prefix=https:///cas
>>
>> mgm

Re: [cas-user] CAS Management 6.5.2

2022-05-25 Thread Trevor Fong 
Hi Ray,

Thanks very much for your response.

It's before authentication - the redirection happens as soon as I GET
https://my.cas.server/cas-management
Here's a DEBUG log of it happening right after I do a GET on
https://my.cas.server/cas-management via my browser:

2022-05-25 14:48:13,815 INFO
[org.springframework.web.servlet.DispatcherServlet] - 
2022-05-25 14:48:13,815 DEBUG
[org.springframework.web.servlet.DispatcherServlet] - 
2022-05-25 14:48:13,815 DEBUG
[org.springframework.web.servlet.DispatcherServlet] - 
2022-05-25 14:48:13,815 DEBUG
[org.springframework.web.servlet.DispatcherServlet] - 
2022-05-25 14:48:13,817 DEBUG
[org.springframework.web.servlet.DispatcherServlet] - 
2022-05-25 14:48:13,818 DEBUG
[org.springframework.web.servlet.DispatcherServlet] - 
2022-05-25 14:48:13,818 DEBUG
[org.springframework.web.servlet.DispatcherServlet] -

2022-05-25 14:48:13,818 INFO
[org.springframework.web.servlet.DispatcherServlet] - 
2022-05-25 14:48:13,832 DEBUG
[org.springframework.security.web.FilterChainProxy] - 
2022-05-25 14:48:13,834 DEBUG
[org.springframework.security.web.access.channel.ChannelProcessingFilter] -

2022-05-25 14:48:13,834 DEBUG
[org.springframework.security.web.access.channel.RetryWithHttpsEntryPoint]
- https://localhost:8443/cas-management/>
2022-05-25 14:48:13,834 DEBUG
[org.springframework.security.web.DefaultRedirectStrategy] - https://localhost:8443/cas-management/>

Thanks,
Trev

On Wed, 25 May 2022 at 15:10, Ray Bon  wrote:

> Trev,
>
> Are you being redirected to localhost after log in or when you access
> https://my.server.../cas-management?
>
> If it is before, then this could be an issue with the application
> container.
> If it is after, it may be in the service definition for cas-management.
>
> Ray
>
> On Wed, 2022-05-25 at 14:25 -0700, Trevor Fong wrote:
>
> Notice: This message was sent from outside the University of Victoria
> email system. Please be cautious with links and sensitive information.
>
> Hi Everyone,
>
> In an attempt to resolve my CAS Management issues, I've now upgraded to
> 6.5.3 and am deploying via CASInitializr, all to no avail, still!:
> # getcas --type cas-overlay --casVersion 6.5.3 --modules
> support-jpa-ticket-registry,support-jpa-service-registry,support-ldap,support-saml,support-duo,support-audit-jdbc
> # getcas getcas --type cas-management-overlay --casVersion 6.5.3
> After "./gradlew clean build" for both, I'm then deploying the resulting
> cas.war and cas-management.war files to a Tomcat 9 instance.
>
> My /etc/cas/config/management.properties is:
> cas.server.name=https://my.server.name
> cas.server.prefix=https://my.server.name/cas
>
> # Update this URL to point at server running this management app
> mgmt.server-name=https://my.server.name
>
> mgmt.user-properties-file=file:/etc/cas/config/users.json
> mgmt.admin-roles[0]=ROLE_ADMIN
> mgmt.user-roles[0]=ROLE_USER
>
> server.servlet.context-path=/cas-management
> server.port=8080
>
> logging.config=file:/etc/cas/config/log4j2-management.xml
> ...
>
> When I try to load https://my.server.name/cas-management I still get
> redirected to http://localhost:8443/cas-management
>
> Any help would be greatly appreciated.
>
> Thanks,
> Trev
>
>
> On Tuesday, May 17, 2022 at 1:55:00 PM UTC-7 Trevor Fong wrote:
>
> Hi Mathieu
>
> Yes - I do have an /etc/cas/config/management.properties file.  From my
> initial message:
> “
>
> In the /etc/cas/config/management.properties I have the following
> configured:
> cas.server.name=https://
> cas.server.prefix=https:///cas
>
> mgmt.admin-roles[0]=ROLE_ADMIN
> mgmt.user-properties-file=file:/etc/cas/config/users.properties
>
> # Update this URL to point at server running this management app
> mgmt.server-name=https://
>
> server.context-path=/cas-management
> server.port=443
>
> logging.config=file:/etc/cas/config/log4j2-management.xml
> “
> Thanks a lot
> Trev
>
> .
> On May 17, 2022, 9:42 AM -0700, Mathieu HETRU , wrote:
>
> Have you created the management.properties file in this place ?
> /etc/cas/config/management.properties ?
>
> Best Regards,
>
> Le mar. 17 mai 2022 à 18:14, Trevor Fong  a écrit :
>
> Hi Mathieu
>
> I’ve tried those variations also to the same result.
>
> Thanks a lot for the suggestions though.  Really appreciate any tips.
>
> Trev
>
> .
> On May 17, 2022, 8:31 AM -0700, cas-...@apereo.org, wrote:
>
>
> To
>
> --
> - Website: https://apereo.github.io/cas
> - Gitter Chatroom: https://gitter.im/apereo/cas
> - List Guidelines: https://goo.gl/1VRrw7
> - Contributions: https://goo.gl/mh7qDG
> ---
> You received this message because you are subscribed to the Google Groups
> "CAS Commu

Re: [cas-user] CAS Management 6.5.2

2022-05-25 Thread Trevor Fong 
I forgot to mention that setting all logging to DEBUG doesn't seem to 
reveal anything enlightening.  It just shows that it is finding the 
management.properties file and it is loading those properties.  It just 
doesn't seem to be using them to construct the redirect address:

2022-05-25 07:07:55,084 DEBUG 
[org.apereo.cas.configuration.DefaultCasConfigurationPropertiesSourceLocator] 
- 
2022-05-25 07:07:55,095 INFO 
[org.apereo.cas.configuration.DefaultCasConfigurationPropertiesSourceLocator] 
- 
2022-05-25 07:07:55,096 DEBUG 
[org.apereo.cas.configuration.DefaultCasConfigurationPropertiesSourceLocator] 
- 
2022-05-25 07:07:55,097 DEBUG 
[org.apereo.cas.configuration.loader.SimpleConfigurationPropertiesLoader] - 

2022-05-25 07:07:55,098 DEBUG 
[org.apereo.cas.configuration.loader.SimpleConfigurationPropertiesLoader] - 

2022-05-25 07:07:55,100 DEBUG 
[org.apereo.cas.configuration.DefaultCasConfigurationPropertiesSourceLocator] 
- 
2022-05-25 07:07:55,110 DEBUG 
[org.apereo.cas.configuration.loader.YamlConfigurationPropertiesLoader] - 

2022-05-25 07:07:55,181 INFO 
[org.apereo.cas.mgmt.web.CasManagementWebApplicationServletInitializer] - 


--Trev
On Wednesday, May 25, 2022 at 2:25:44 PM UTC-7 Trevor Fong wrote:

> Hi Everyone,
>
> In an attempt to resolve my CAS Management issues, I've now upgraded to 
> 6.5.3 and am deploying via CASInitializr, all to no avail, still!:
> # getcas --type cas-overlay --casVersion 6.5.3 --modules 
> support-jpa-ticket-registry,support-jpa-service-registry,support-ldap,support-saml,support-duo,support-audit-jdbc
> # getcas getcas --type cas-management-overlay --casVersion 6.5.3  
> After "./gradlew clean build" for both, I'm then deploying the resulting 
> cas.war and cas-management.war files to a Tomcat 9 instance.
>
> My /etc/cas/config/management.properties is:
> cas.server.name=https://my.server.name
> cas.server.prefix=https://my.server.name/cas
>
>
> # Update this URL to point at server running this management app
> mgmt.server-name=https://my.server.name
>
> mgmt.user-properties-file=file:/etc/cas/config/users.json
> mgmt.admin-roles[0]=ROLE_ADMIN
> mgmt.user-roles[0]=ROLE_USER
>
> server.servlet.context-path=/cas-management
> server.port=8080
>
> logging.config=file:/etc/cas/config/log4j2-management.xml
> ...
>
> When I try to load https://my.server.name/cas-management I still get 
> redirected to http://localhost:8443/cas-management
>
> Any help would be greatly appreciated.
>
> Thanks,
> Trev
>
>
> On Tuesday, May 17, 2022 at 1:55:00 PM UTC-7 Trevor Fong wrote:
>
>> Hi Mathieu
>>
>> Yes - I do have an /etc/cas/config/management.properties file.  From my 
>> initial message:
>> “
>>
>> In the /etc/cas/config/management.properties I have the following 
>> configured:
>> cas.server.name=https://
>> cas.server.prefix=https:///cas
>>
>> mgmt.admin-roles[0]=ROLE_ADMIN
>> mgmt.user-properties-file=file:/etc/cas/config/users.properties
>>
>> # Update this URL to point at server running this management app
>> mgmt.server-name=https://
>>
>> server.context-path=/cas-management
>> server.port=443
>>
>> logging.config=file:/etc/cas/config/log4j2-management.xml
>> “
>> Thanks a lot
>> Trev
>>
>> .
>> On May 17, 2022, 9:42 AM -0700, Mathieu HETRU , wrote:
>>
>> Have you created the management.properties file in this place ? 
>> /etc/cas/config/management.properties ?
>>
>> Best Regards,
>>
>> Le mar. 17 mai 2022 à 18:14, Trevor Fong  a écrit :
>>
>>> Hi Mathieu
>>>
>>> I’ve tried those variations also to the same result.
>>>
>>> Thanks a lot for the suggestions though.  Really appreciate any tips.
>>>
>>> Trev
>>>
>>> .
>>> On May 17, 2022, 8:31 AM -0700, cas-...@apereo.org, wrote:
>>>
>>>
>>> To
>>>
>>> --
>>> - Website: https://apereo.github.io/cas
>>> - Gitter Chatroom: https://gitter.im/apereo/cas
>>> - List Guidelines: https://goo.gl/1VRrw7
>>> - Contributions: https://goo.gl/mh7qDG
>>> ---
>>> You received this message because you are subscribed to the Google 
>>> Groups "CAS Community" group.
>>> To unsubscribe from this group and stop receiving emails from it, send 
>>> an email to cas-user+u...@apereo.org.
>>> To view this discussion on the web visit 
>>> https://groups.google.com/a/apereo.org/d/msgid/cas-user/e27cc2eb-31f1-4181-9183-cbaeacb7275d%40Spark
>>>  
>>> <https://groups.google.com/a/apereo.org/d/msgid/cas-user/e27cc2eb-31f1-4181-9183-cbaeacb7275d%40Spark?utm_medium=

Re: [cas-user] CAS Management 6.5.2

2022-05-25 Thread Trevor Fong 
Hi Everyone,

In an attempt to resolve my CAS Management issues, I've now upgraded to 
6.5.3 and am deploying via CASInitializr, all to no avail, still!:
# getcas --type cas-overlay --casVersion 6.5.3 --modules 
support-jpa-ticket-registry,support-jpa-service-registry,support-ldap,support-saml,support-duo,support-audit-jdbc
# getcas getcas --type cas-management-overlay --casVersion 6.5.3  
After "./gradlew clean build" for both, I'm then deploying the resulting 
cas.war and cas-management.war files to a Tomcat 9 instance.

My /etc/cas/config/management.properties is:
cas.server.name=https://my.server.name
cas.server.prefix=https://my.server.name/cas

# Update this URL to point at server running this management app
mgmt.server-name=https://my.server.name

mgmt.user-properties-file=file:/etc/cas/config/users.json
mgmt.admin-roles[0]=ROLE_ADMIN
mgmt.user-roles[0]=ROLE_USER

server.servlet.context-path=/cas-management
server.port=8080

logging.config=file:/etc/cas/config/log4j2-management.xml
...

When I try to load https://my.server.name/cas-management I still get 
redirected to http://localhost:8443/cas-management

Any help would be greatly appreciated.

Thanks,
Trev


On Tuesday, May 17, 2022 at 1:55:00 PM UTC-7 Trevor Fong wrote:

> Hi Mathieu
>
> Yes - I do have an /etc/cas/config/management.properties file.  From my 
> initial message:
> “
>
> In the /etc/cas/config/management.properties I have the following 
> configured:
> cas.server.name=https://
> cas.server.prefix=https:///cas
>
> mgmt.admin-roles[0]=ROLE_ADMIN
> mgmt.user-properties-file=file:/etc/cas/config/users.properties
>
> # Update this URL to point at server running this management app
> mgmt.server-name=https://
>
> server.context-path=/cas-management
> server.port=443
>
> logging.config=file:/etc/cas/config/log4j2-management.xml
> “
> Thanks a lot
> Trev
>
> .
> On May 17, 2022, 9:42 AM -0700, Mathieu HETRU , wrote:
>
> Have you created the management.properties file in this place ? 
> /etc/cas/config/management.properties ?
>
> Best Regards,
>
> Le mar. 17 mai 2022 à 18:14, Trevor Fong  a écrit :
>
>> Hi Mathieu
>>
>> I’ve tried those variations also to the same result.
>>
>> Thanks a lot for the suggestions though.  Really appreciate any tips.
>>
>> Trev
>>
>> .
>> On May 17, 2022, 8:31 AM -0700, cas-...@apereo.org, wrote:
>>
>>
>> To
>>
>> --
>> - Website: https://apereo.github.io/cas
>> - Gitter Chatroom: https://gitter.im/apereo/cas
>> - List Guidelines: https://goo.gl/1VRrw7
>> - Contributions: https://goo.gl/mh7qDG
>> ---
>> You received this message because you are subscribed to the Google Groups 
>> "CAS Community" group.
>> To unsubscribe from this group and stop receiving emails from it, send an 
>> email to cas-user+u...@apereo.org.
>> To view this discussion on the web visit 
>> https://groups.google.com/a/apereo.org/d/msgid/cas-user/e27cc2eb-31f1-4181-9183-cbaeacb7275d%40Spark
>>  
>> <https://groups.google.com/a/apereo.org/d/msgid/cas-user/e27cc2eb-31f1-4181-9183-cbaeacb7275d%40Spark?utm_medium=email_source=footer>
>> .
>>
> --
> - Website: https://apereo.github.io/cas
> - Gitter Chatroom: https://gitter.im/apereo/cas
> - List Guidelines: https://goo.gl/1VRrw7
> - Contributions: https://goo.gl/mh7qDG
> ---
> You received this message because you are subscribed to the Google Groups 
> "CAS Community" group.
> To unsubscribe from this group and stop receiving emails from it, send an 
> email to cas-user+u...@apereo.org.
>
> To view this discussion on the web visit 
> https://groups.google.com/a/apereo.org/d/msgid/cas-user/CAHNwO5nTgzV3HhUye-TD_Cdt6UUPe_G-56wvAX3Ky04zv-9nKQ%40mail.gmail.com
>  
> <https://groups.google.com/a/apereo.org/d/msgid/cas-user/CAHNwO5nTgzV3HhUye-TD_Cdt6UUPe_G-56wvAX3Ky04zv-9nKQ%40mail.gmail.com?utm_medium=email_source=footer>
> .
>
>

-- 
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines: https://goo.gl/1VRrw7
- Contributions: https://goo.gl/mh7qDG
--- 
You received this message because you are subscribed to the Google Groups "CAS 
Community" group.
To unsubscribe from this group and stop receiving emails from it, send an email 
to cas-user+unsubscr...@apereo.org.
To view this discussion on the web visit 
https://groups.google.com/a/apereo.org/d/msgid/cas-user/0f4093fe-c4af-42ba-add9-dece21986222n%40apereo.org.

Re: [cas-user] CAS Management 6.5.2

2022-05-17 Thread Trevor Fong 
Hi Mathieu

Yes - I do have an /etc/cas/config/management.properties file.  From my initial 
message:
“
In the /etc/cas/config/management.properties I have the following configured:
cas.server.name=https://
cas.server.prefix=https:///cas

mgmt.admin-roles[0]=ROLE_ADMIN
mgmt.user-properties-file=file:/etc/cas/config/users.properties

# Update this URL to point at server running this management app
mgmt.server-name=https://

server.context-path=/cas-management
server.port=443

logging.config=file:/etc/cas/config/log4j2-management.xml
“
Thanks a lot
Trev

.
On May 17, 2022, 9:42 AM -0700, Mathieu HETRU , wrote:
> Have you created the management.properties file in this place ? 
> /etc/cas/config/management.properties ?
>
> Best Regards,
>
> > Le mar. 17 mai 2022 à 18:14, Trevor Fong  a écrit :
> > > Hi Mathieu
> > >
> > > I’ve tried those variations also to the same result.
> > >
> > > Thanks a lot for the suggestions though.  Really appreciate any tips.
> > >
> > > Trev
> > >
> > > .
> > > On May 17, 2022, 8:31 AM -0700, cas-user@apereo.org, wrote:
> > > >
> > > > To
> > > --
> > > - Website: https://apereo.github.io/cas
> > > - Gitter Chatroom: https://gitter.im/apereo/cas
> > > - List Guidelines: https://goo.gl/1VRrw7
> > > - Contributions: https://goo.gl/mh7qDG
> > > ---
> > > You received this message because you are subscribed to the Google Groups 
> > > "CAS Community" group.
> > > To unsubscribe from this group and stop receiving emails from it, send an 
> > > email to cas-user+unsubscr...@apereo.org.
> > > To view this discussion on the web visit 
> > > https://groups.google.com/a/apereo.org/d/msgid/cas-user/e27cc2eb-31f1-4181-9183-cbaeacb7275d%40Spark.
> --
> - Website: https://apereo.github.io/cas
> - Gitter Chatroom: https://gitter.im/apereo/cas
> - List Guidelines: https://goo.gl/1VRrw7
> - Contributions: https://goo.gl/mh7qDG
> ---
> You received this message because you are subscribed to the Google Groups 
> "CAS Community" group.
> To unsubscribe from this group and stop receiving emails from it, send an 
> email to cas-user+unsubscr...@apereo.org.
> To view this discussion on the web visit 
> https://groups.google.com/a/apereo.org/d/msgid/cas-user/CAHNwO5nTgzV3HhUye-TD_Cdt6UUPe_G-56wvAX3Ky04zv-9nKQ%40mail.gmail.com.

-- 
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines: https://goo.gl/1VRrw7
- Contributions: https://goo.gl/mh7qDG
--- 
You received this message because you are subscribed to the Google Groups "CAS 
Community" group.
To unsubscribe from this group and stop receiving emails from it, send an email 
to cas-user+unsubscr...@apereo.org.
To view this discussion on the web visit 
https://groups.google.com/a/apereo.org/d/msgid/cas-user/f1da14a3-9a9a-4ac0-b2da-81ff294f3443%40Spark.

Re: [cas-user] CAS Management 6.5.2

2022-05-17 Thread Trevor Fong 
Hi Mathieu

I’ve tried those variations also to the same result.

Thanks a lot for the suggestions though.  Really appreciate any tips.

Trev

.
On May 17, 2022, 8:31 AM -0700, cas-user@apereo.org, wrote:
>
> To

-- 
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines: https://goo.gl/1VRrw7
- Contributions: https://goo.gl/mh7qDG
--- 
You received this message because you are subscribed to the Google Groups "CAS 
Community" group.
To unsubscribe from this group and stop receiving emails from it, send an email 
to cas-user+unsubscr...@apereo.org.
To view this discussion on the web visit 
https://groups.google.com/a/apereo.org/d/msgid/cas-user/e27cc2eb-31f1-4181-9183-cbaeacb7275d%40Spark.

[cas-user] CAS Management 6.5.2

2022-05-12 Thread Trevor Fong 
Hi All,
I'm trying to set up a fresh 6.5.2 install and am having trouble getting 
the cas-management to work.  I can login OK if I go to 
https:///cas/login.
But if I try to go to https:///cas-management I get redirected 
to https://localhost:8443/cas-management/

Theoretically, this should be controlled by the "mgmt.server-name" property 
in management.properties but changing it doesn't seem to have any affect.

In the /etc/cas/config/management.properties I have the following 
configured:
cas.server.name=https://
cas.server.prefix=https:///cas

mgmt.admin-roles[0]=ROLE_ADMIN
mgmt.user-properties-file=file:/etc/cas/config/users.properties

# Update this URL to point at server running this management app
mgmt.server-name=https://

server.context-path=/cas-management
server.port=443

logging.config=file:/etc/cas/config/log4j2-management.xml

Would anyone have any clue what's going on?

Thanks a lot,
Trev

-- 
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines: https://goo.gl/1VRrw7
- Contributions: https://goo.gl/mh7qDG
--- 
You received this message because you are subscribed to the Google Groups "CAS 
Community" group.
To unsubscribe from this group and stop receiving emails from it, send an email 
to cas-user+unsubscr...@apereo.org.
To view this discussion on the web visit 
https://groups.google.com/a/apereo.org/d/msgid/cas-user/744d1b02-a0df-4105-b1c0-a051c9379c50n%40apereo.org.

[cas-user] Re: AUP not Working With MFA (CAS 5.2.4)

2019-10-10 Thread Trevor Fong 
Bump.  Anyone have any ideas about presenting AUP during login on a site 
with an MFA provider designated?

Thanks,
Trev

On Monday, October 7, 2019 at 4:05:49 PM UTC-7, Trevor Fong wrote:
>
> Hi Everyone,
>
> We are on CAS 5.2.4, and have implemented AUP (Acceptable Usage Policy) 
> with LDAP and also MFA (Multi-Factor Authentication) via Duo.  Both work 
> fine by themselves.  
> The problem is that if a site has an MFA provider defined, the AUP flow 
> does not get triggered.
> Would anyone know what's up / how to remedy the situation?  Is this a 
> bug?  If so, is it addressed in a later release?
>
> Thanks,
> Trev 
>

-- 
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines: https://goo.gl/1VRrw7
- Contributions: https://goo.gl/mh7qDG
--- 
You received this message because you are subscribed to the Google Groups "CAS 
Community" group.
To unsubscribe from this group and stop receiving emails from it, send an email 
to cas-user+unsubscr...@apereo.org.
To view this discussion on the web visit 
https://groups.google.com/a/apereo.org/d/msgid/cas-user/ccf4bc42-bca2-4628-923a-8cc0632bfc1f%40apereo.org.

[cas-user] AUP not Working With MFA (CAS 5.2.4)

2019-10-07 Thread Trevor Fong 
Hi Everyone,

We are on CAS 5.2.4, and have implemented AUP (Acceptable Usage Policy) 
with LDAP and also MFA (Multi-Factor Authentication) via Duo.  Both work 
fine by themselves.  
The problem is that if a site has an MFA provider defined, the AUP flow 
does not get triggered.
Would anyone know what's up / how to remedy the situation?  Is this a bug?  
If so, is it addressed in a later release?

Thanks,
Trev 

-- 
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines: https://goo.gl/1VRrw7
- Contributions: https://goo.gl/mh7qDG
--- 
You received this message because you are subscribed to the Google Groups "CAS 
Community" group.
To unsubscribe from this group and stop receiving emails from it, send an email 
to cas-user+unsubscr...@apereo.org.
To view this discussion on the web visit 
https://groups.google.com/a/apereo.org/d/msgid/cas-user/d67c26e9-a03e-466b-a65c-e684f7d83de1%40apereo.org.

[cas-user] Re: Deadlocks and Uncommited Transaction

2018-10-08 Thread Trevor Fong 


Anyone have any ideas why we're getting deadlocks against the tables LOCKS, 
SERVICETICKET, TICKETGRANTINGTICKET?

Thanks a lot
Trev


On Friday, October 5, 2018 at 4:50:40 PM UTC-7, Trevor Fong wrote:
> Hi There, 
> 
> 
> We've trying out CAS 5.2.4 in a clustered environment with the ticket 
> registry in an Oracle 12c database.  We've been seeing tons of persistent 
> deadlock errors after a load test - you kill one locker and another deadlock 
> springs up.
> Our DBA tells us that deadlocks were seen against the tables LOCKS, 
> SERVICETICKET, TICKETGRANTINGTICKET
> Checking the catalina.out log, tons of messages like this:
> 
> 
> 
> 2018-10-04 22:45:06,347 WARN 
> [org.hibernate.engine.jdbc.spi.SqlExceptionHelper] -  SQLState: 61000>
> 2018-10-04 22:45:06,347 ERROR 
> [org.hibernate.engine.jdbc.spi.SqlExceptionHelper] -  detected while waiting for resource
> >
> 2018-10-04 22:45:06,347 ERROR 
> [org.apereo.cas.ticket.registry.DefaultTicketRegistryCleaner] - 
>  statement>
> javax.persistence.PersistenceException: 
> org.hibernate.exception.LockAcquisitionException: could not execute statement
>         at 
> org.hibernate.internal.ExceptionConverterImpl.convert(ExceptionConverterImpl.java:149)
>  ~[hibernate-core-5.2.13.Final.jar:5.2.13.Final]
>         at 
> org.hibernate.internal.ExceptionConverterImpl.convert(ExceptionConverterImpl.java:157)
>  ~[hibernate-core-5.2.13.Final.jar:5.2.13.Final]
>         at 
> org.hibernate.query.internal.AbstractProducedQuery.executeUpdate(AbstractProducedQuery.java:1514)
>  ~[hibernate-core-5.2.13.Final.jar:5.2.13.Final]
>         at 
> org.apereo.cas.ticket.registry.JpaTicketRegistry.deleteTicketGrantingTickets(JpaTicketRegistry.java:177)
>  ~[cas-server-support-jpa-ticket-registry-5.2.4.jar:5.2.4]
>         at 
> org.apereo.cas.ticket.registry.JpaTicketRegistry.deleteSingleTicket(JpaTicketRegistry.java:145)
>  ~[cas-server-support-jpa-ticket-registry-5.2.4.jar:5.2.4]
>         at 
> org.apereo.cas.ticket.registry.AbstractTicketRegistry.deleteTicket(AbstractTicketRegistry.java:126)
>  ~[cas-server-core-tickets-5.2.4.jar:5.2.4]
>         at 
> org.apereo.cas.ticket.registry.AbstractTicketRegistry$$FastClassBySpringCGLIB$$d3c67a11.invoke()
>  ~[cas-server-core-tickets-5.2.4.jar:5.2.4]
>         at 
> org.springframework.cglib.proxy.MethodProxy.invoke(MethodProxy.java:204) 
> ~[spring-core-4.3.16.RELEASE.jar:4.3.16.RELEASE]
>         at 
> org.springframework.aop.framework.CglibAopProxy$DynamicAdvisedInterceptor.intercept(CglibAopProxy.java:669)
>  ~[spring-aop-4.3.16.RELEASE.jar:4.3.16.RELEASE]
>         at 
> org.apereo.cas.ticket.registry.JpaTicketRegistry$$EnhancerBySpringCGLIB$$45967896.deleteTicket()
>  ~[cas-server-support-jpa-ticket-registry-5.2.4.jar:5.2.4]
>         at sun.reflect.GeneratedMethodAccessor351.invoke(Unknown Source) 
> ~[?:?]
>         at 
> sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
>  ~[?:1.8.0_172]
>         at java.lang.reflect.Method.invoke(Method.java:498) ~[?:1.8.0_172]
>         at 
> org.springframework.aop.support.AopUtils.invokeJoinpointUsingReflection(AopUtils.java:333)
>  ~[spring-aop-4.3.16.RELEASE.jar:4.3.16.RELEASE]
>         at 
> org.springframework.aop.framework.ReflectiveMethodInvocation.invokeJoinpoint(ReflectiveMethodInvocation.java:190)
>  ~[spring-aop-4.3.16.RELEASE.jar:4.3.16.RELEASE]
>         at 
> org.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:157)
>  ~[spring-aop-4.3.16.RELEASE.jar:4.3.16.RELEASE]
>         at 
> org.springframework.aop.support.DelegatingIntroductionInterceptor.doProceed(DelegatingIntroductionInterceptor.java:133)
>  ~[spring-aop-4.3.16.RELEASE.jar:4.3.16.RELEASE]
>         at 
> org.springframework.aop.support.DelegatingIntroductionInterceptor.invoke(DelegatingIntroductionInterceptor.java:121)
>  ~[spring-aop-4.3.16.RELEASE.jar:4.3.16.RELEASE]
>         at 
> org.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:179)
>  ~[spring-aop-4.3.16.RELEASE.jar:4.3.16.RELEASE]
>         at 
> org.springframework.aop.framework.JdkDynamicAopProxy.invoke(JdkDynamicAopProxy.java:213)
>  ~[spring-aop-4.3.16.RELEASE.jar:4.3.16.RELEASE]
>         at com.sun.proxy.$Proxy104.deleteTicket(Unknown Source) ~[?:?]
>         at 
> org.apereo.cas.ticket.registry.DefaultTicketRegistryCleaner.cleanTicket(DefaultTicketRegistryCleaner.java:78)
>  ~[cas-server-core-tickets-5.2.4.jar:5.2.4]
>         at 
> java.util.stream.ReferencePipeline$4$1.accept(ReferencePipeline.java:210) 
> ~[?:1.8.0_172]
>         at 
> java.util.stream.ReferencePipeline$2$1.accept(ReferencePipeline.java:175) 
> ~[?

[cas-user] Deadlocks and Uncommited Transaction

2018-10-05 Thread Trevor Fong 
Hi There, 

We've trying out CAS 5.2.4 in a clustered environment with the ticket 
registry in an Oracle 12c database.  We've been seeing tons of persistent 
deadlock errors after a load test - you kill one locker and another 
deadlock springs up.
Our DBA tells us that deadlocks were seen against the tables LOCKS, 
SERVICETICKET, TICKETGRANTINGTICKET
Checking the catalina.out log, tons of messages like this:

2018-10-04 22:45:06,347 WARN 
[org.hibernate.engine.jdbc.spi.SqlExceptionHelper] - 
2018-10-04 22:45:06,347 ERROR 
[org.hibernate.engine.jdbc.spi.SqlExceptionHelper] - 
2018-10-04 22:45:06,347 ERROR 
[org.apereo.cas.ticket.registry.DefaultTicketRegistryCleaner] - 

javax.persistence.PersistenceException: 
org.hibernate.exception.LockAcquisitionException: could not execute 
statement
at 
org.hibernate.internal.ExceptionConverterImpl.convert(ExceptionConverterImpl.java:149)
 
~[hibernate-core-5.2.13.Final.jar:5.2.13.Final]
at 
org.hibernate.internal.ExceptionConverterImpl.convert(ExceptionConverterImpl.java:157)
 
~[hibernate-core-5.2.13.Final.jar:5.2.13.Final]
at 
org.hibernate.query.internal.AbstractProducedQuery.executeUpdate(AbstractProducedQuery.java:1514)
 
~[hibernate-core-5.2.13.Final.jar:5.2.13.Final]
at 
org.apereo.cas.ticket.registry.JpaTicketRegistry.deleteTicketGrantingTickets(JpaTicketRegistry.java:177)
 
~[cas-server-support-jpa-ticket-registry-5.2.4.jar:5.2.4]
at 
org.apereo.cas.ticket.registry.JpaTicketRegistry.deleteSingleTicket(JpaTicketRegistry.java:145)
 
~[cas-server-support-jpa-ticket-registry-5.2.4.jar:5.2.4]
at 
org.apereo.cas.ticket.registry.AbstractTicketRegistry.deleteTicket(AbstractTicketRegistry.java:126)
 
~[cas-server-core-tickets-5.2.4.jar:5.2.4]
at 
org.apereo.cas.ticket.registry.AbstractTicketRegistry$$FastClassBySpringCGLIB$$d3c67a11.invoke()
 
~[cas-server-core-tickets-5.2.4.jar:5.2.4]
at 
org.springframework.cglib.proxy.MethodProxy.invoke(MethodProxy.java:204) 
~[spring-core-4.3.16.RELEASE.jar:4.3.16.RELEASE]
at 
org.springframework.aop.framework.CglibAopProxy$DynamicAdvisedInterceptor.intercept(CglibAopProxy.java:669)
 
~[spring-aop-4.3.16.RELEASE.jar:4.3.16.RELEASE]
at 
org.apereo.cas.ticket.registry.JpaTicketRegistry$$EnhancerBySpringCGLIB$$45967896.deleteTicket()
 
~[cas-server-support-jpa-ticket-registry-5.2.4.jar:5.2.4]
at sun.reflect.GeneratedMethodAccessor351.invoke(Unknown Source) 
~[?:?]
at 
sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
 
~[?:1.8.0_172]
at java.lang.reflect.Method.invoke(Method.java:498) ~[?:1.8.0_172]
at 
org.springframework.aop.support.AopUtils.invokeJoinpointUsingReflection(AopUtils.java:333)
 
~[spring-aop-4.3.16.RELEASE.jar:4.3.16.RELEASE]
at 
org.springframework.aop.framework.ReflectiveMethodInvocation.invokeJoinpoint(ReflectiveMethodInvocation.java:190)
 
~[spring-aop-4.3.16.RELEASE.jar:4.3.16.RELEASE]
at 
org.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:157)
 
~[spring-aop-4.3.16.RELEASE.jar:4.3.16.RELEASE]
at 
org.springframework.aop.support.DelegatingIntroductionInterceptor.doProceed(DelegatingIntroductionInterceptor.java:133)
 
~[spring-aop-4.3.16.RELEASE.jar:4.3.16.RELEASE]
at 
org.springframework.aop.support.DelegatingIntroductionInterceptor.invoke(DelegatingIntroductionInterceptor.java:121)
 
~[spring-aop-4.3.16.RELEASE.jar:4.3.16.RELEASE]
at 
org.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:179)
 
~[spring-aop-4.3.16.RELEASE.jar:4.3.16.RELEASE]
at 
org.springframework.aop.framework.JdkDynamicAopProxy.invoke(JdkDynamicAopProxy.java:213)
 
~[spring-aop-4.3.16.RELEASE.jar:4.3.16.RELEASE]
at com.sun.proxy.$Proxy104.deleteTicket(Unknown Source) ~[?:?]
at 
org.apereo.cas.ticket.registry.DefaultTicketRegistryCleaner.cleanTicket(DefaultTicketRegistryCleaner.java:78)
 
~[cas-server-core-tickets-5.2.4.jar:5.2.4]
at 
java.util.stream.ReferencePipeline$4$1.accept(ReferencePipeline.java:210) 
~[?:1.8.0_172]
at 
java.util.stream.ReferencePipeline$2$1.accept(ReferencePipeline.java:175) 
~[?:1.8.0_172]
at java.util.Iterator.forEachRemaining(Iterator.java:116) 
~[?:1.8.0_172]
at 
java.util.Spliterators$IteratorSpliterator.forEachRemaining(Spliterators.java:1801)
 
~[?:1.8.0_172]
at 
java.util.stream.ReferencePipeline$Head.forEach(ReferencePipeline.java:580) 
~[?:1.8.0_172]
at 
java.util.stream.ReferencePipeline$7$1.accept(ReferencePipeline.java:270) 
~[?:1.8.0_172]
at 
java.util.stream.ReferencePipeline$3$1.accept(ReferencePipeline.java:193) 
~[?:1.8.0_172]
at 
java.util.stream.ReferencePipeline$3$1.accept(ReferencePipeline.java:193) 
~[?:1.8.0_172]
at 
java.util.ArrayList$ArrayListSpliterator.forEachRemaining(ArrayList.java:1382) 
~[?:1.8.0_172]