[cas-user] CAS with JAAS configuration issues

2015-07-07 Thread Siddharth Goel 
I have CAS 4.0 and a dummy web application running on Tomcat7 which is 
using the simple AcceptUsersAuthenticationHandler for authentication the 
user. This setup is working.
I wanted to extend CAS configuration so that it uses both JAAS as well as 
AcceptUsersAuthenticationHandler . How can I do that?

I think the explanation at 
http://jasig.github.io/cas/4.0.x/installation/JAAS-Authentication.html is 
not very clear for this scenario.

-- 
You are currently subscribed to cas-user@lists.jasig.org as: 
arch...@mail-archive.com
To unsubscribe, change settings or access archives, see 
http://www.ja-sig.org/wiki/display/JSG/cas-user

[cas-user] Casifying ILLiad - is anyone doing this ?

2015-07-07 Thread Chris Adams 
Hello all,

We use an Interlibrary software called ILLiad. I have utilized the work of 
another person who developed a custom cas client and interfaced it with CAS. I 
have not been able to follow up with him about the errors I am seeing. I 
thought that someone on the list might be using CAS with ILLiad and have some 
insight.

I copied the dotnetcasclient.dll into what I think is the application 
executable folder. I actually created a /Bin folder in the executable folder 
since there wasn't one  and stuffed the dll there. I modified the root website 
web.conf as instructed to give some presence to the cas client.

The process that I am using for testing is to go from our library catalog, 
utilizing a request with search parameters and passing it  to the application. 
Obviously, the intent was for it to go the CAS login page and then pass the 
search parameters to the application.

I get a generic 500 server error, but the event viewer gives a little more 
information that might be useful.

I think that something is not right with the location of the 
dotnetcasclient.dll because the error messages indicate that it or a dependency 
can't be found. I have tried putting it in several different location, but it 
is not working I have included a bit of the information from the event viewer 
below.

Many thanks,  Christopher Adams


008
   A configuration error has occurred.
   7/7/2015 5:22:53 PM
   7/8/2015 12:22:53 AM
   e9ef81926e3b4ed2b8d7798e7e660c30
   1
   1
   0
   /LM/W3SVC/1/ROOT/ILLiad-1-130807885685829466
   Full
   /ILLiad
   C:\inetpub\wwwroot\illiad\
   MyServerComputerName

   10312
   w3wp.exe
   NT AUTHORITY\NETWORK SERVICE
   ConfigurationErrorsException
   Could not load file or assembly 'DotNetCasClient' or one of its 
dependencies. The system cannot find the file specified. at 
System.Web.Configuration.ConfigUtil.GetType(String typeName, String 
propertyName, ConfigurationElement configElement, XmlNode node, Boolean 
checkAptcaBit, Boolean ignoreCase) at 
System.Web.Configuration.ConfigUtil.GetType(String typeName, String 
propertyName, ConfigurationElement configElement, Boolean checkAptcaBit) at 
System.Web.Configuration.Common.ModulesEntry.SecureGetType(String typeName, 
String propertyName, ConfigurationElement configElement) at 
System.Web.Configuration.Common.ModulesEntry..ctor(String name, String 
typeName, String propertyName, ConfigurationElement configElement) at 
System.Web.HttpApplication.BuildIntegratedModuleCollection(List`1 moduleList) 
at System.Web.HttpApplication.GetModuleCollection(IntPtr appContext) at 
System.Web.HttpApplication.RegisterEventSubscriptionsWithIIS(IntPtr appContext, 
HttpContext context, MethodInfo[] handlers) at 
System.Web.HttpApplication.InitSpecial(HttpApplicationState state, MethodInfo[] 
handlers, IntPtr appContext, HttpContext context) at 
System.Web.HttpApplicationFactory.GetSpecialApplicationInstance(IntPtr 
appContext, HttpContext context) at 
System.Web.Hosting.PipelineRuntime.InitializeApplication(IntPtr appContext) 
Could not load file or assembly 'DotNetCasClient' or one of its dependencies. 
The system cannot find the file specified. at 
System.RuntimeTypeHandle.GetTypeByName(String name, Boolean throwOnError, 
Boolean ignoreCase, Boolean reflectionOnly, StackCrawlMarkHandle stackMark, 
IntPtr pPrivHostBinder, Boolean loadTypeFromPartialName, ObjectHandleOnStack 
type) at System.RuntimeTypeHandle.GetTypeByName(String name, Boolean 
throwOnError, Boolean ignoreCase, Boolean reflectionOnly, StackCrawlMark& 
stackMark, IntPtr pPrivHostBinder, Boolean loadTypeFromPartialName) at 
System.RuntimeType.GetType(String typeName, Boolean throwOnError, Boolean 
ignoreCase, Boolean reflectionOnly, StackCrawlMark& stackMark) at 
System.Type.GetType(String typeName, Boolean throwOnError, Boolean ignoreCase) 
at System.Web.Compilation.BuildManager.GetType(String typeName, Boolean 
throwOnError, Boolean ignoreCase) at 
System.Web.Configuration.ConfigUtil.GetType(String typeName, String 
propertyName, ConfigurationElement configElement, XmlNode node, Boolean 
checkAptcaBit, Boolean ignoreCase)
   
http://myserver.com/illiad/illiad.dll?Action=10&Form=30&sid=CATALOG&genre=loan&title=Salmon
 [owned by OSL ]&ISBN=9780394533971&aulast=Sakurai&date=c1984.&rft.pub=Knopf ; 
Random House ; Distributed by Random House,&rft.place=
   /illiad/illiad.dll

-- 
You are currently subscribed to cas-user@lists.jasig.org as: 
arch...@mail-archive.com
To unsubscribe, change settings or access archives, see 
http://www.ja-sig.org/wiki/display/JSG/cas-user

[cas-user] Newbie question: IIS static site auth to jasig ?

2015-07-07 Thread Gary M 
HI

I'm just coming up to speed on jasig. I have a few static sites in IIS 7.5
I'd like to authenticate using jasig.

I've been looking at the web, but I only find references to CASing webApps.
It there a way to send all cert authorizations for the IIS server to jasig
?

-gary

-- 
You are currently subscribed to cas-user@lists.jasig.org as: 
arch...@mail-archive.com
To unsubscribe, change settings or access archives, see 
http://www.ja-sig.org/wiki/display/JSG/cas-user

[cas-user] CAS tomcat process creating more then 400 PIPES

2015-07-07 Thread Josep Manel Andrés 

Hi,
I just found out that the main tomcat process is opening pipes like this, :

java32110 tomcat  597r  FIFO  0,643319782 pipe
java32110 tomcat  598w  FIFO  0,643319783 pipe
java32110 tomcat  600w  FIFO  0,643319784 pipe

Number is flapping from 200 up to more than 400, since we didn't do any 
modification in the source code I cannot figure out where those pipes 
may come from.


We just noticed that situation since the service started to degrade.

Thanks in advance.

--
Josep Manel Andrés (josep.and...@bsc.es)


WARNING / LEGAL TEXT: This message is intended only for the use of the
individual or entity to which it is addressed and may contain
information which is privileged, confidential, proprietary, or exempt
from disclosure under applicable law. If you are not the intended
recipient or the person responsible for delivering the message to the
intended recipient, you are strictly prohibited from disclosing,
distributing, copying, or in any way using this message. If you have
received this communication in error, please notify the sender and
destroy and delete any copies you may have received.

http://www.bsc.es/disclaimer

--
You are currently subscribed to cas-user@lists.jasig.org as: 
arch...@mail-archive.com
To unsubscribe, change settings or access archives, see 
http://www.ja-sig.org/wiki/display/JSG/cas-user

Re: [cas-user] CAS User remains on login page

2015-07-07 Thread Jérôme LELEU 
Hi,

Did that happen when they stay too long on the login page before entering
credentials? Because the webflow can be expired and cause this kind of
behaviour. What is the web session of your application?

Thanks.
Best regards,
Jérôme


2015-07-07 15:53 GMT+02:00 Juan Quintanilla :

>  Hi,
>
>
>
> We currently deployed CAS 3.6.0 with backend ldap and oracle Db for
> ticketing and everything seems to be working great, but on occasion we have
> had some users who have gone to a particular site report that when they are
> redirected to the CAS Login page from the client application they are not
> able to login.  If they enter bad credentials no error message is displayed
> and if they enter the correct credentials they are redirected back to the
> CAS login page.
>
>
>
> When I check the CAS server logs I do not see any transactions for the
> user nor do I see failed authentication attempts for Ldap, its as if the
> communication is not even reaching the server, the tomcat logs don't report
> any errors for the times when the issue is encountered.  It seems to happen
> sporadically since other users have no problem logging in.  Once the user
> closers their browser or tab and tries again they are able to login.
>
>
>
> Just wanted to see if anyone has encountered something similar in their
> environment, I'm thinking it has to be something relating to the networking
> side.
>
>
>  ___
> Juan Quintanilla
> jquin...@fiu.edu
>
> --
> You are currently subscribed to cas-user@lists.jasig.org as: lel...@gmail.com
> To unsubscribe, change settings or access archives, see 
> http://www.ja-sig.org/wiki/display/JSG/cas-user
>
>

-- 
You are currently subscribed to cas-user@lists.jasig.org as: 
arch...@mail-archive.com
To unsubscribe, change settings or access archives, see 
http://www.ja-sig.org/wiki/display/JSG/cas-user

[cas-user] CAS User remains on login page

2015-07-07 Thread Juan Quintanilla 
Hi,



We currently deployed CAS 3.6.0 with backend ldap and oracle Db for ticketing 
and everything seems to be working great, but on occasion we have had some 
users who have gone to a particular site report that when they are redirected 
to the CAS Login page from the client application they are not able to login.  
If they enter bad credentials no error message is displayed and if they enter 
the correct credentials they are redirected back to the CAS login page.



When I check the CAS server logs I do not see any transactions for the user nor 
do I see failed authentication attempts for Ldap, its as if the communication 
is not even reaching the server, the tomcat logs don't report any errors for 
the times when the issue is encountered.  It seems to happen sporadically since 
other users have no problem logging in.  Once the user closers their browser or 
tab and tries again they are able to login.



Just wanted to see if anyone has encountered something similar in their 
environment, I'm thinking it has to be something relating to the networking 
side.


___
Juan Quintanilla
jquin...@fiu.edu

-- 
You are currently subscribed to cas-user@lists.jasig.org as: 
arch...@mail-archive.com
To unsubscribe, change settings or access archives, see 
http://www.ja-sig.org/wiki/display/JSG/cas-user

Re: [cas-user] Redirection is not working after successfull authentication

2015-07-07 Thread Dmitriy Kopylenko 
What does your client app’s web.xml look like? What does your CAS’ 
deployerConfigContext.xml look like?

Alternatively, if you are building Java web apps with Spring Boot (highly 
recommended these days), you could easily CAS-protect it with the available 
auto config CAS client library, specifically written for Spring’s Javaconfig 
style apps and Spring Boot apps in particular. The sample app is available 
here: https://github.com/UniconLabs/bootiful-cas-client 


Cheers,
Dmitriy.

> On Jul 7, 2015, at 8:43 AM, Ercan Canlıer  wrote:
> 
> Hi everybody,
> I have currently installed a CAS server by following the maven war overlay 
> convention.
> I am running also Apache Directory Server for LDAP authentication.
> The integration works fine and if you provide the principles correct, it is 
> successfully authenticated.
> I want to establish SSO for the applications which will be CAS services.
> I correctly configured web.xml for the cas client and it is succesfully being 
> redirected to the login page when i open the application via browser.
> Everything works fine till now but there is one issue which i am facing at 
> the moment.
> CAS does not redirect back to the application.
> Below is the url for the redirection:
> 
> https://localhost:8443/cas/login?TARGET=https%3A%2F%2Flocalhost%3A8443%2Fcas-sample-java-webapp%2F
> 
> According to the documentation, i expected service=application_url but here 
> TARGET as a key.
> 
> On the other hand, if i change TARGET to service, CAS throws exception, 
> saying,
> 
> Application Not Authorized to Use CAS
> 
> 
> 
> How can i configure my java application as a java client?
> 
> 
> 
> I am currently using the latest cas version, 4.0.2
> 
> 
> 
> Hope you can give me some hints.
> 
> I could not get success by following the current documentation and templates.
> 
> 
> 
> Thanks
> 
> .
> Best regards.
> Ercan CANLIER
> -- 
> You are currently subscribed to cas-user@lists.jasig.org as: 
> dkopyle...@unicon.net
> To unsubscribe, change settings or access archives, see 
> http://www.ja-sig.org/wiki/display/JSG/cas-user


-- 
You are currently subscribed to cas-user@lists.jasig.org as: 
arch...@mail-archive.com
To unsubscribe, change settings or access archives, see 
http://www.ja-sig.org/wiki/display/JSG/cas-user

[cas-user] Redirection is not working after successfull authentication

2015-07-07 Thread Ercan Canlıer 
Hi everybody,
I have currently installed a CAS server by following the maven war overlay 
convention.
I am running also Apache Directory Server for LDAP authentication.
The integration works fine and if you provide the principles correct, it is 
successfully authenticated.
I want to establish SSO for the applications which will be CAS services.
I correctly configured web.xml for the cas client and it is succesfully 
being redirected to the login page when i open the application via browser.
Everything works fine till now but there is one issue which i am facing at 
the moment.
CAS does not redirect back to the application.
Below is the url for the redirection:

*https://localhost:8443/cas/login?TARGET=https%3A%2F%2Flocalhost%3A8443%2Fcas-sample-java-webapp%2F*

According to the documentation, i expected service=application_url but here 
TARGET as a key.

On the other hand, if i change TARGET to service, CAS throws exception, 
saying,

*Application Not Authorized to Use CAS*


How can i configure my java application as a java client?


I am currently using the latest cas version, 4.0.2


Hope you can give me some hints.

I could not get success by following the current documentation and 
templates.


Thanks
.
Best regards.
Ercan CANLIER

-- 
You are currently subscribed to cas-user@lists.jasig.org as: 
arch...@mail-archive.com
To unsubscribe, change settings or access archives, see 
http://www.ja-sig.org/wiki/display/JSG/cas-user