[cas-user] No resolver configured for LdapAuthenticationHandler. Falling back to handler principal

2015-11-02 Thread Carsten Malchow 
Hi together,

 

I've a problem to release Attributes from my LDAP.

All works fine, I can login and in my Debug mode I can see that all
attributes are mapped.

But when it comes to relapses them I get the message:



http://www.springframework.org/schema/beans;

   xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance;

   xmlns:p="http://www.springframework.org/schema/p;

   xmlns:c="http://www.springframework.org/schema/c;

   xmlns:context="http://www.springframework.org/schema/context;

   xmlns:util="http://www.springframework.org/schema/util;

   xsi:schemaLocation="http://www.springframework.org/schema/beans

   http://www.springframework.org/schema/beans/spring-beans.xsd

   http://www.springframework.org/schema/context
http://www.springframework.org/schema/context/spring-context.xsd

   http://www.springframework.org/schema/util
http://www.springframework.org/schema/util/spring-util.xsd;>

   





 

   

   

   

 


   

   

   



   

   

 


 


 


 


 


 


 


   

   

   

   



 

 

 

   

 

   

 

   

 

   

 

   

  

 

  

   

 

   

 

   

 

   

   

   

   

   

 

   

 

 

   

 

   

 

   

 

   

 

   

 

   

 

   

   

  







  















   

   

   

   

   

   













 



 

Kind regards

 

Carsten

 


-- 
You are currently subscribed to cas-user@lists.jasig.org as: 
arch...@mail-archive.com
To unsubscribe, change settings or access archives, see 
http://www.ja-sig.org/wiki/display/JSG/cas-user

[cas-user] org.jasig.cas.authentication.handler.DefaultPasswordEncoder

2015-11-02 Thread Patrick Coleman 
Hi,

Can someone tell me which encoders DefaultPasswordEncoder can handle?

>From this page on "Class DefaultPasswordEncoder"
https://developer.jasig.org/projects/cas/cas-server-core/cas-server/cas-server-core/apidocs/org/jasig/cas/authentication/handler/DefaultPasswordEncoder.html

It says it can handle "any message digest that the JDK can accept, including 
MD5 and SHA1”. Does it handle SHA256? Where can
I get info on this. From what I’ve read MD5 and SHA1 are not considered secure.

Thanks for any help

Pat.


Patrick Coleman
patcole...@me.com 
301-651-9573




-- 
You are currently subscribed to cas-user@lists.jasig.org as: 
arch...@mail-archive.com
To unsubscribe, change settings or access archives, see 
http://www.ja-sig.org/wiki/display/JSG/cas-user

RE: [cas-user] org.jasig.cas.authentication.handler.DefaultPasswordEncoder

2015-11-02 Thread Misagh Moayyed 
For JDK7, you likely want to review:

https://docs.oracle.com/javase/7/docs/technotes/guides/security/StandardNames.html#MessageDigest



JDK8:

https://docs.oracle.com/javase/8/docs/technotes/guides/security/StandardNames.html#MessageDigest



From: Patrick Coleman [mailto:patcole...@me.com]
Sent: Monday, November 2, 2015 4:59 PM
To: cas-user@lists.jasig.org
Subject: [cas-user] 
org.jasig.cas.authentication.handler.DefaultPasswordEncoder



Hi,



Can someone tell me which encoders DefaultPasswordEncoder can handle?



>From this page on "Class DefaultPasswordEncoder"

https://developer.jasig.org/projects/cas/cas-server-core/cas-server/cas-server-core/apidocs/org/jasig/cas/authentication/handler/DefaultPasswordEncoder.html



It says it can handle "any message digest that the JDK can accept, including 
MD5 and SHA1”. Does it handle SHA256? Where can

I get info on this. From what I’ve read MD5 and SHA1 are not considered 
secure.



Thanks for any help



Pat.





Patrick Coleman

patcole...@me.com 

301-651-9573








-- 
You are currently subscribed to cas-user@lists.jasig.org 
  as: mmoay...@unicon.net 

To unsubscribe, change settings or access archives, see 
http://www.ja-sig.org/wiki/display/JSG/cas-user

-- 
You are currently subscribed to cas-user@lists.jasig.org as: 
arch...@mail-archive.com
To unsubscribe, change settings or access archives, see 
http://www.ja-sig.org/wiki/display/JSG/cas-user

Re: [cas-user] org.jasig.cas.authentication.handler.DefaultPasswordEncoder

2015-11-02 Thread Patrick Coleman 
Thanks for that.


> On Nov 2, 2015, at 7:03 PM, Misagh Moayyed  wrote:
> 
> For JDK7, you likely want to review:
> https://docs.oracle.com/javase/7/docs/technotes/guides/security/StandardNames.html#MessageDigest
>  
> 
>  
> JDK8:
> https://docs.oracle.com/javase/8/docs/technotes/guides/security/StandardNames.html#MessageDigest
>  
> 
>  
> From: Patrick Coleman [mailto:patcole...@me.com] 
> Sent: Monday, November 2, 2015 4:59 PM
> To: cas-user@lists.jasig.org
> Subject: [cas-user] 
> org.jasig.cas.authentication.handler.DefaultPasswordEncoder
>  
> Hi,
>  
> Can someone tell me which encoders DefaultPasswordEncoder can handle?
>  
> From this page on "Class DefaultPasswordEncoder"
> https://developer.jasig.org/projects/cas/cas-server-core/cas-server/cas-server-core/apidocs/org/jasig/cas/authentication/handler/DefaultPasswordEncoder.html
>  
> 
>  
> It says it can handle "any message digest that the JDK can accept, including 
> MD5 and SHA1”. Does it handle SHA256? Where can
> I get info on this. From what I’ve read MD5 and SHA1 are not considered 
> secure.
>  
> Thanks for any help
>  
> Pat.
>  
>  
> Patrick Coleman
> patcole...@me.com 
> 301-651-9573
>  
>  
>  
>  
> -- 
> You are currently subscribed to cas-user@lists.jasig.org 
>  as: mmoay...@unicon.net 
> 
> To unsubscribe, change settings or access archives, see 
> http://www.ja-sig.org/wiki/display/JSG/cas-user 
> 
> -- 
> You are currently subscribed to cas-user@lists.jasig.org 
>  as: patcole...@me.com 
> 
> To unsubscribe, change settings or access archives, see 
> http://www.ja-sig.org/wiki/display/JSG/cas-user 
> 
Patrick Coleman
patcole...@me.com 
301-651-9573




-- 
You are currently subscribed to cas-user@lists.jasig.org as: 
arch...@mail-archive.com
To unsubscribe, change settings or access archives, see 
http://www.ja-sig.org/wiki/display/JSG/cas-user

[cas-user] hazelcast tickets not replicating

2015-11-02 Thread Jonas Steinberg 
My setup is extremely straightforward.

My cas server is essentially a copy of this 


I used this  to integrate hazelcast

My java client is based on this 

My cas.properties file looks like this 

My client's web.xml looks like this 

Everything is essentially working great except when I bring down NODEA the 
sessions of ALL users associated with NODEA are ended.
This is not my understanding of how Hazelcast is supposed to work.  My 
understanding was that I could bring down a node and expect all previously 
authenticated
users to still have an active session.  Am I wrong?

Any insight would be greatly appreciated!



-- 
You are currently subscribed to cas-user@lists.jasig.org as: 
arch...@mail-archive.com
To unsubscribe, change settings or access archives, see 
http://www.ja-sig.org/wiki/display/JSG/cas-user