Yan,
It is a wise idea to sign logout requests. This prevents a bad actor from
creating false logouts.
'Validate SAML requests with signature ... ' is for the log in request.
When your client app sends a logout request to cas, does cas (as IdP) end its
session with the client?
Ray
On Fri,
Hi All,
I'm trying to customize the AUP template view and some of the logic behind
its SUBMIT button. The problem is that I'm running into some compiler
errors when I try to do a "./gradlew clean build":
$ ./gradlew clean build
Configuration on demand is an incubating feature.
> Task
Thanks Ray!
Good direction, I finally made some progress after doing what you
suggested, except SLO scenario, I posted a new message as that seems to be
separate from what this is.
Yan
On Monday, August 28, 2023 at 1:09:58 PM UTC-4 Ray Bon wrote:
> Yan,
>
> It still sounds like you are
Hi,
I have almost completed SAML delegated authN with CAS and Okta, CAS
delegates to Okta, except for SLO.
When client app initiates SLO, it goes to CAS, CAS redirects to Okta, but
Okta says "invalid signature", the SAML Logout request from CAS has no
signature element. See below.
I
Actually according to the SAML2 Specification it should not be returning
the InResponseTo for any unsolicited/ IdP Initiated
SSO's: https://docs.oasis-open.org/security/saml/v2.0/saml-profiles-2.0-os.pdf
4.1.5 Unsolicited Responses
An identity provider MAY initiate this profile by delivering an
Hi Diego,
glad to help. :)
But it looks like I need to correct myself a bit: the field was renamed,
yet an annotation *@JsonProperty("multifactorPolicy")* was added to the
class field at the same time. That's why the documentation is still
generally correct when writing about
Hi Jeremiah,
Thank you so much for your reply. You can simply email me your letter
and I will attach it to our application paperwork.
Thanks so much for your help,
Patrick
On 9/8/23 1:56 PM, Jeremiah Garmatter wrote:
Hi Patrick,
Where should we send our completed letters?
On Thursday,
Hello Patrick,
Thank you for the prompt. Where should we send this letter? Or would an
email be sufficient?
Thank you,
Matt
On Thursday, September 7, 2023 at 2:20:02 PM UTC-4 Patrick Masson wrote:
> *(Cross-posting on CAS Announcements and CAS Community)*
>
> Dear CAS Community,
>
>
Hi Patrick,
Where should we send our completed letters?
On Thursday, September 7, 2023 at 2:20:02 PM UTC-4 Patrick Masson wrote:
> *(Cross-posting on CAS Announcements and CAS Community)*
>
> Dear CAS Community,
>
> *TL;DR:* Apereo is seeking grant funding to support the continued
>
Hello,
When using the built in IdP functonality as of CAS 6.6.11 with an IdP
initiated a.k.a. Unsolicited SSO the SAML response now includes a
"inResponseTo" attribute within the "saml2p:Response" tag. There is no
option to disable it here, only within the subject. We have a vendor that
does
See
https://apereo.github.io/cas/6.6.x/webflow/Webflow-Customization-Extensions.html
and https://fawnoos.com/2022/07/22/cas66-ui-themes/
Ray
On Fri, 2023-09-08 at 16:15 +0800, ztf863 wrote:
Notice: This message was sent from outside the University of Victoria email
system. Please be cautious
You have basically one large commit for all changes, its much easier for
apereo to see what and where is being changed if you make a commit for each
section of changes. Also, why is there authy stuff in the mfa module,
should probably be renamed, the classes, etc.. to okta, for example,
Hi Petr,
thank you very much for your response! Changing the name from
*multifactorPolicy* to *multifactorAuthenticationPolicy* worked, I just
followed the documentation and the attribute has the name I was trying to
use. That's why I thought it was a bug, I did not expect it was a simple
Hello, I am a beginner in CAS. I want to add a new controller to the
CAS7 server, but it does not take effect. How should I implement it? Is
there any documentation for this? Thanks
--
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines:
Hi,
I have developped a custom module for Apereo CAS to allow Okta MFA support
for CAS Authentication
We have developed a custom working module based on a similar Authy project
we've found online.
We are having trouble now to fork, adapt & submit our module to CAS 6.6.12
release due for
15 matches
Mail list logo
