[cas-user] Re: Using cas.authn.attribute-repository/ person directory for only one service

I was able to sort it out. Thank you, Matt On Saturday, March 30, 2024 at 1:46:24 PM UTC-4 Matthew Gordon wrote: > Hello, > > I followed this ( > https://fawnoos.com/2019/03/15/cas61x-attribute-repositories/), to define > a service to use a specific attribute repository to obtain extra

[cas-user] Possible to use an attribute repo for a single SSO?

Hello, I had posted https://groups.google.com/a/apereo.org/g/cas-user/c/HJRLzUIXwL4/m/wJyLd9N8AAAJ, and I know it may be bad form to re-post the same question, but my title and description are a bit poor... So apologies for the re-post. I am hoping it's possible to use an attribute repository

[cas-user] Using cas.authn.attribute-repository/ person directory for only one service

Hello, I followed this (https://fawnoos.com/2019/03/15/cas61x-attribute-repositories/), to define a service to use a specific attribute repository to obtain extra attributes for a single service. I only need these attributes for the one service, so I would rather not query them unless the

[cas-user] Re: InResponseTo being added to on IdP initated SSO's

@mmoayyed Thank you for fixing this https://github.com/apereo/cas/commit/b0e9a98f5003e477a6816fd57b3474aea4513f12 Thank you, Matt On Tuesday, September 19, 2023 at 9:14:23 AM UTC-4 Matthew Gordon wrote: > Is this push going to resolve this issue? > > >

[cas-user] Re: InResponseTo being added to on IdP initated SSO's

Is this push going to resolve this issue? https://github.com/apereo/cas/blame/7fca3208abdf1b39bb15662a2d5c66c7284276b2/support/cas-server-support-saml-core-api/src/main/java/org/apereo/cas/support/saml/util/AbstractSaml20ObjectBuilder.java#L355 Thank you, Matt On Friday, September 8, 2023 at

[cas-user] Re: InResponseTo being added to on IdP initated SSO's

Actually according to the SAML2 Specification it should not be returning the InResponseTo for any unsolicited/ IdP Initiated SSO's: https://docs.oasis-open.org/security/saml/v2.0/saml-profiles-2.0-os.pdf 4.1.5 Unsolicited Responses An identity provider MAY initiate this profile by delivering an

[cas-user] Re: Request: CAS Letter of Support

Hello Patrick, Thank you for the prompt. Where should we send this letter? Or would an email be sufficient? Thank you, Matt On Thursday, September 7, 2023 at 2:20:02 PM UTC-4 Patrick Masson wrote: > *(Cross-posting on CAS Announcements and CAS Community)* > > Dear CAS Community, > >

[cas-user] InResponseTo being added to on IdP initated SSO's

Hello, When using the built in IdP functonality as of CAS 6.6.11 with an IdP initiated a.k.a. Unsolicited SSO the SAML response now includes a "inResponseTo" attribute within the "saml2p:Response" tag. There is no option to disable it here, only within the subject. We have a vendor that does