Okay, the last issue was due to ticket taking more than 10sec to validate.
That is resolved.
One thing I did not notice before is that I'm seeing errors in my logs that
TGT already exist so I get a unique constraint violation when inserting
into postgres db. Would this be due to
Hi,
Mine is SAML2.
based on the principle that Client App should not be aware of whether CAS
is the IDP or CAS is delegating, I thought SSO url remains the
same: https://localhost:8443/cas/idp/profile/SAML2/POST/SSO
But when client app redirects to this above SSO endpoint, CAS is looking
Hi there,
I made a mistake, changed dependencies without rebuilding the project. Now
made progress, auto-redirect is working now,
Client App goes to IDP directly (because the IDP meta data generated by CAS
has Okta URL in it). But after I login through Okta, it redirects to CAS,
this is where
Yan,
My local OIDC goes to cas/oidc/oidcAuthorize where cas redirects to /cas/login.
In your case, cas should redirect to the remote IdP.
The cas endpoints are described here,
https://apereo.github.io/cas/6.6.x/authentication/OIDC-Authentication.html
(though I note that the protocol differs
Pablo,
When using cas protocol for login, it is possible to include the host name
(foobar1 in your case) to the ST. It escapes my how to set this, since my local
does not do this but our prod servers do. This is handy when you have multiple
cas servers.
The other form of the ST is probably for
Thanks for the tip on the ultimate edition.
Cas uses a number of keys for various tasks. If the key is not present in your
config, cas will create one on boot. It will be different each time cas starts
and, of course, anything persisted with the earlier key will no longer be
accessible.
There
Hi,
This is my environment:
CAS 6.6.x, SAML2 delegated authN, SpringBoot app -> CAS -> Okta (CAS
delegates to Okta, CAS is a SP to Okta, Okta is IDP).
one trouble I have is on client app side, it needs to specify IDP, which
should be CAS, but I do not know what should be the CAS SSO
Looks like from your config, you don't have a static value set for gauth
encryption, each restart without consistent values would generate a new key
each time,
you could for dev testing, set below, restart. And also, wipe your couchdb
records so you can re-register,
Hi, I thought the Ultimate edition has it :
https://www.jetbrains.com/help/idea/remote-development-starting-page.html But I
will never be offered this tool anyhow ! I am using my main production
logfile at "/etc/cas/config log4j2.xml", with all levels between "trace" and
"debug". And I see
i have property:
cas.host.name=foobar1
Looking at my postgres_jpa_ticket_entity table, I do see some services
tickets appended with this value and the format looks like to alphanumberic
formatted ticket (ST-ABC123-foobar1)
But I am also seeing some service tickets without the foobar1 appended
Benny,
Front end customizations are described here,
https://fawnoos.com/2022/08/06/cas66-gettingstarted-overlay/#user-interface-customizations
https://fawnoos.com/2022/07/22/cas66-ui-themes/
https://apereo.github.io/cas/6.6.x/ux/User-Interface-Customization.html
Cas has a rest interface,
Hi
Various possibilities :
https://prigaux.frama.io/cas-spa-docs/
But really the easiest solution is "same session for html and api"
See https://framagit.org/prigaux/cas-angular-example/-/commits/master for
examples.
( https://prigaux.github.io/presentation-SPA-CAS/ is french only )
Cu
12 matches
Mail list logo