PM Ocean Liu wrote:
> Hi John,
>
> We want to let you know we *removed* that configuration (which excludes
> the EmbeddedWebServerFactoryCustomizerAutoConfiguration) in our
> environment.
> We added server.tomcat.background-processor-delay=0s configuration, and
> it fixed
s time.
>
> While we would have liked to create a minimal sample to submit to Spring
> Boot, our current focus is on completing the upgrade within our timeline
> constraints.
>
> Best,
>
> Ocean
>
>
> On Tuesday, March 24, 2020 at 6:10:15 AM UTC-7 John Bond wrote:
else has seen this issue and, if so, have found a
workaround?
Thanks
John
--
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines: https://goo.gl/1VRrw7
- Contributions: https://goo.gl/mh7qDG
---
You received this message because you
The AMQP, is the easiest,
https://apereo.github.io/cas/development/ticketing/Messaging-AMQP-Ticket-Registry.html
On Saturday, November 4, 2023 at 1:45:54 AM UTC-5 Doug C wrote:
> In testing the latest release of 7.0.0, I discovered that memcached was
> not working for my ticket registry.
Can also change view to something like this,
Register Device
Please
name the current device.
Set these 2 divs to display: none and also set duration you want.
Device Name
https://github.com/apereo/cas/blob/v6.6.13/support/cas-server-support-thymeleaf/src/main/resources/templates/mfa-trusted-devices/casMfaRegisterDeviceView.html#L19
Duration
and also ${tokenWithoutPrefix} for the token without the CAS- prefix
On Thursday, October 26, 2023 at 4:32:24 AM UTC-5 Hartmut Trüe wrote:
> Try this:
> text: "Hello! Your requested CAS token is ${token}"
>
> Regards,
> Hartmut
>
> Mm Mm schrieb am Donnerstag, 26. Oktober 2023 um 10:49:14
Sounds like you are not on lastest or at least 6.6.10. There was a bug in
versions previous
On Thursday, October 19, 2023 at 7:10:25 AM UTC-5 Hartmut Trüe wrote:
> No one uses Yubikey? No idea?
>
> Regards,
> Hartmut
> Hartmut Trüe schrieb am Freitag, 29. September 2023 um 09:59:21 UTC+2:
>
>>
arts written to either bypass/force for surrogate situations.
>
> We have been using CAS since the 3.x days and when groovy webflow came
> along, it was a blessing!! It is s much easier to maintain then custom
> java code. See the attached, this is one of about 4 different flow
&
You have basically one large commit for all changes, its much easier for
apereo to see what and where is being changed if you make a commit for each
section of changes. Also, why is there authy stuff in the mfa module,
should probably be renamed, the classes, etc.. to okta, for example,
Looks like from your config, you don't have a static value set for gauth
encryption, each restart without consistent values would generate a new key
each time,
you could for dev testing, set below, restart. And also, wipe your couchdb
records so you can re-register,
The 6.6.10 thing looks to be a developer ooops, so it should have stayed
and worked. The removal is probably because it has low usage, maybe based
on maven download stats. In any case, we moved a lot after I saw the
deprecation for couchdb in v7 to what we could using Rest based ones, that
opposite). I know is not optimal, but given the fact that I am unable
> to trigger an MFA authentication by service I am looking for options! The
> image below shows an example of what I want to do.
>
>
> On Wednesday, 23 August 2023 at 13:12:06 UTC-3 John wrote:
>
> Forgot, w
ill proceed, and I want to do
> the opposite). I know is not optimal, but given the fact that I am unable
> to trigger an MFA authentication by service I am looking for options! The
> image below shows an example of what I want to do.
>
>
> On Wednesday, 23 August 2023 at 13:12:06 UTC-
will proceed, and I want to do
> the opposite). I know is not optimal, but given the fact that I am unable
> to trigger an MFA authentication by service I am looking for options! The
> image below shows an example of what I want to do.
>
>
> On Wednesday, 23 August 2023 at 13:12:
Were no longer on 6.x series, as in your case, we used couchdb for many
items and it is being removed in 7.x so we went ahead and moved on and it
looks as though it was removed on the tag for 6.6.10, maybe on accident?
because it still exists in the 6.6.x branch. Maybe an ooops by one of the
ltRegisteredServiceMultifactorPolicy",
"multifactorAuthenticationProviders" : [ "java.util.LinkedHashSet", [
"mfa-gauth", "mfa-webauthn" ] ]
}
}
On Wednesday, August 23, 2023 at 10:01:04 AM UTC-5 diego@unc.edu.ar
wrote:
> Hello J
Forgot, what do you mean by this? " Is there a way to block authentication
when using Groovy to trigger the mfa? " can you post what your doing in
groovy to get better idea?
On Wednesday, August 23, 2023 at 10:01:04 AM UTC-5 diego@unc.edu.ar
wrote:
> Hello John,
>
> f
You have an array set, there was a bug in earlier 6.6 versions and was
fixed in a later 6.6 release. Please update to the latest 6.6.x release and
it will work as it should.
On Wednesday, August 23, 2023 at 7:50:48 AM UTC-5 diego@unc.edu.ar
wrote:
> Hello Ray,
>
> Sorry about that.
>
> I
I'm looking at staying within the SPM for CAS. I'm a bit nervous as the EoL
for 6.5.x is slated for the end of December. It looks like 7.0.0-RC9 is
slated for 12/22. Is there any plans for extending the 6.6.x SPM date? How
many releases are generally left in SPM after a new version of CAS is
. See here,
https://github.com/apereo/cas/commit/3a8cb528850d3822dbeba7a73f7e3bf85d3d9abc
, you could switch to latest tag in gradle if you dont want to build off
master, tag is 7.0.0-RC6 ,
On Wednesday, July 26, 2023 at 11:54:54 AM UTC-5 tos...@smythco.com wrote:
> Thanks for your reply J
assuming that the what appears to be the failure is the bypass
> of the surrogate drop down selection when using the +adminuser approach if
> the groovy script returns "mfa-simple". If the groovy script returns null
> then surrogate drop down selection works correctly with +adminus
We use mfa-simple for database auths as well, which groovy mfa are you
using? cas.authn.mfa.core.provider-selector-groovy-script OR
cas.authn.mfa.groovy-script
which is what we use,
On Tuesday, July 25, 2023 at 3:41:02 PM UTC-5 Ray Bon wrote:
> Anthony,
>
> Does surrogate+username / password
s way more sustainable to maintain then the
other.
Thanks,
John
On Tuesday, July 25, 2023 at 7:18:07 AM UTC-5 spfma...@e.mail.fr wrote:
> Hi,
> Thanks for your reply.
> From what I have read in the recommendations in the docs, scripting is ok
> but coding is better and more sustainable (bu
This is slimmed down using the groovy script trigger,
cas.authn.mfa.groovy-script.location
from here,
https://apereo.github.io/cas/6.6.x/mfa/Configuring-Multifactor-Authentication-Triggers-Groovy.html
. I left in the bits pertaining basically to your case, gets the clients ip
address and
borg"
> displayName: "Frederic Dussurget"
> requireResidentKey: false
> urls: {…}
> authenticate: "webauthn/authenticate"
> register: "webauthn/register"
> : {…}
> username: "frederic.dussurget"
>
> I you guys have any idea ...
&g
A FIDO2 WEBAUTHN
> implementation
> "org.apereo.cas:cas-server-support-webauthn:${project.'cas.version'}"
> implementation
> "org.apereo.cas:cas-server-support-webauthn-redis:${project.'cas.version'}"
> implementation
> "org.apereo.cas:cas-server-support-weba
+
WebAuthnController.WEBAUTHN_ENDPOINT_REGISTER);
On Monday, February 6, 2023 at 9:53:31 PM UTC-6 John wrote:
> Since we don't use any of the actuators, all disabled except for whatever
> cas sets as default, I am leaving my change by commenting out
> @PreAuthorize("isAuthenticated()") in WebAuthnController.java
Hi CAS Community,
Issue:
I'm currently facing a problem with encoding my passwords that are saved in
a Oracle DataBase and they are crypted by SHA-1
This is my .yml configuration
cas:
authn:
accept:
enabled: false
jdbc:
query[0]:
driver-class: oracle.jdbc.driver.OracleDriver
field-password:
essage: message, links: redirect_to,
block: block, ssoEnabled: sso_enabled, interrupt: interrupt_flow,
autoRedirect: true)
}
On Friday, February 17, 2023 at 7:19:09 AM UTC-6 Josh wrote:
> Thanks for the reply John.
>
> Are you using "def run(final Object... args) { }" as yo
Works fine for us on 6.6.4, using something below
message = "Test message";
redirect_to = [link1: ""];
block = false;
sso_enabled = true;
interrupt_flow = false;
if (interrupt_enabled) {
if (registeredService) {
svc_id = 0;
if
gt;
> 2) using PERMIT or ANONYMOUS is not enough to make it work, as perhaps
> it does not satisfy the @PreAuthorize("isAuthenticated()") requirement
>
> I wonder how the registration endpoint should be authenticated; I guess it
> can not be left unprotected but I fail
int?
>
> Best regards,
>
> Michal Vocu
>
> On 1/26/23 19:03, John wrote:
>
> When trying to register a new device, the POST request to
> /webauthn/register is failing from spring security, access denied, http 403.
>
> Commenting out the below within
> (support
When trying to register a new device, the POST request to
/webauthn/register is failing from spring security, access denied, http 403.
Commenting out the below within
(support/cas-server-support-webauthn-core/src/main/java/org/apereo/cas/webauthn/web/WebAuthnController.java)
got it working
This was also fixed recently but not released in 6.5.x build, the fix is in
earliest 6.6.0-RC4 from what I can tell,
https://github.com/apereo/cas/commit/c7d1bf17af0e06930363730aeffbdb7cb3241f2f
On Wednesday, July 13, 2022 at 11:49:25 AM UTC-5 tha...@apu.edu wrote:
> We recently upgraded our
You can use multiple providers using selection now in current release with
principal attribute per
service,
https://github.com/apereo/cas/commit/90e770fb9d04877c58f569b4dab28e97422d62ef
, I reported it with a pull request not to long ago and someone else also
added a fix for Rest, I am
Java doesn't use or recognize a systems root store afaik, at least on
linux, windows can use or used to be able to
use -Djavax.net.ssl.trustStoreType=Windows-ROOT, not sure if that even
works still , java uses its own cacerts file in /lib/security/ , you need
to put your certs CAS will need
is what the response from our user profile endpoint response looks
like, which is the same as when we had the `claims-map` entries:
```
{
"cn": "John Doe",
"email": "j...@example.edu",
"family_name": "Doe",
"given_nam
{
"@class": "java.util.TreeMap",
"mail": "email",
"cn": "name",
"sn": "family_name",
"givenName": "given_name"
}
}
"""
With those changes (using CAS v6.5.0), no
I got the same error too for web-authn, although we haven't deployed
web-authn because I cannot seem to get multiple providers to work and let
the user decide, at all, using any type of triggers
On Sunday, March 13, 2022 at 11:36:15 PM UTC-5 Benjamin Somers wrote:
> Hi,
> I am configuring CAS
Hi Rodolphe,
Thank you for sharing the information, this is really helpful. This
work-around may be something we look into implementing.
John
On Thu, Mar 10, 2022 at 12:46 AM Rodolphe Prin
wrote:
> Hi,
> this is what I did to deal with that problem :
> in my case I was retrieving a
how it worked prior to v6.4.
John
On Tue, Mar 8, 2022 at 5:55 PM Jae Liu wrote:
> I used CAS v6.4 it's ok for me.
>
> I think there something wrong with your configuration. You defined the
> scopes (scopes=openid,profile,emai), CAS will use these as attributes
> release policy, the scop
I tried all different ways to get MFA triggers to work with CAS and let the
user decide which one to use, scenarios I tested,
Triggers:
Groovy Per Application- only works for single provider
Principal Attribute - used multi-valued attribute in ldap, set to mfa-gauth
and mfa-webathn, but CAS
i,
>> I noticed the same behavior.
>> Version : 6.4.4.2
>>
>> `cas.authn.oidc.core.include-id-token-claims=true` allows to get the
>> claims in the token, but with the wrong name.
>>
>> Rodolphe
>>
>>
>> Le mardi 11 janvier 2022 à 20:01:4
vider? It works with multiple
providers when no trigger is set so is this a bug?
On Wednesday, March 2, 2022 at 11:17:24 AM UTC-6 John wrote:
> With debug on I can see it being skipped?? Of course I have attributes
> defined and WANT it to trigger, and the attributes/values
[org.apereo.cas.authentication.DefaultMultifactorAuthenticationProviderResolver]
-
DEBUG [org.apereo.cas.authentication.MultifactorAuthenticationUtils] -
DEBUG
[org.apereo.cas.authentication.mfa.trigger.RegisteredServiceMultifactorAuthenticationTrigger]
-
On Wednesday, March 2, 2022 at 9:19:51 AM UTC-6 John
I have added the "Principal Attribute Per Application" MFA setting, CAS
6.4.6 , and MFA never triggers, if I remove the
principalAttributeNameTrigger and principalAttributeValueToMatch it works
just fine. I can see in the console and logs, the attribute values are
retrieved from ldap and
John wrote:
> Trying to a 2nd MFA provider, WebAuthn, after I add the dependency and
> configure all the settings, build fails and tomcat doesnt start, see below,
> failing on
>
> java.lang.NoClassDefFoundError:
> com/fasterxml/jackson/core/base/BinaryTSFactory
>
> I checke
Trying to a 2nd MFA provider, WebAuthn, after I add the dependency and
configure all the settings, build fails and tomcat doesnt start, see below,
failing on
java.lang.NoClassDefFoundError:
com/fasterxml/jackson/core/base/BinaryTSFactory
I checked on jackson core doesnt have BinaryTSFactory
I figured it out, these work just fine,
cas.spring.cloud.rest.basicAuthUsername=
cas.spring.cloud.rest.basicAuthPassword=
On Thursday, February 17, 2022 at 2:10:01 PM UTC-6 John wrote:
> So converting to using a rest api, the following cas properties have no
> affect nor ar
So converting to using a rest api, the following cas properties have no
affect nor are used,
cas.spring.cloud.rest.basic-auth-username=
cas.spring.cloud.rest.basic-auth-password= cas.spring.cloud.rest.method=
cas.spring.cloud.rest.headers=Header1:Value1;Header2:Value2
The only one that works
in the ID Token.
John
On Tue, Jan 11, 2022 at 12:57 AM Frédéric Lohier
wrote:
> Hello,
>
> Have you tried to set cas.authn.oidc.core.include-id-token-claims=true ?
>
> According to OIDC spec, if you are using response-type=code , the id_token
> should not contain the user claims. But
that looks
like it would address this issue.
Any help/advice would be appreciated,
John
--
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines: https://goo.gl/1VRrw7
- Contributions: https://goo.gl/mh7qDG
---
You received this message because you
AM UTC-7 John Bergant wrote:
> I am trying to upgrade my *CAS* server to *6.3.3* from *6.2.8* and it
> seems the OAuth flow is not working after the upgrade. In *6.3.x* there
> was a feature added that cached registered services (here is the commit
> <https://github.com/ap
I am trying to upgrade my *CAS* server to *6.3.3* from *6.2.8* and it seems
the OAuth flow is not working after the upgrade. In *6.3.x* there was a
feature added that cached registered services (here is the commit
authenticated against. Is this a limitation of the Front Channel Logout
feature or do I have something configured improperly?
Thanks,
John
--
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines: https://goo.gl/1VRrw7
- Contributions: https
Hello all,
We are currently using memcached to store store tickets using the following
configuration
```
cas.ticket.registry.memcached.servers=localhost:11213
cas.ticket.registry.memcached.transcoder=KRYO
```
After a recent upgrade from cas 6.2.7 -> 6.3.1 i noticed that, after cas is
Thanks Jonathon, really appreciate the help. Disabling the thymeleaf cache
fixed the issue and also seeing, as you mentioned, no significant
difference in performance.
On Wednesday, October 21, 2020 at 5:08:02 PM UTC-7 Jonathon Taylor wrote:
> John,
>
> We saw the same behavior
Upgrading from 6.1.7 to the 6.2.x release and noticing that once a custom
theme is displayed, that theme is displayed from that point on no matter
what theme the service definition specifies and it happens for all
browsers/users and not just on the browser that first requested the service
with
Hello,
I am trying to use multiple instances of cas in a docker environment
I am getting the cast exception error when I have more than 1 instance of
cas running
java.lang.ClassCastException: class
org.apereo.cas.services.DefaultRegisteredServiceProperty cannot be cast to
class
Just a quick update that i tested this with 6.2.0 (original test with
6.1.5) and saw the same behaviour
On Wednesday, July 1, 2020 at 12:20:18 PM UTC+2 John Bond wrote:
> > cas.authn.mfa.u2f.crypto.signing.key=***REDACTED***
> there is also: cas.authn.mfa.u2f.crypto.encryption.key=**
> cas.authn.mfa.u2f.crypto.signing.key=***REDACTED***
there is also: cas.authn.mfa.u2f.crypto.encryption.key=***REDACTED***
--
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines: https://goo.gl/1VRrw7
- Contributions: https://goo.gl/mh7qDG
Hello All,
I have recently been testing the use of JPA for u2f registration, moving
away from json. however it seems im getting many more rows in the
U2FDevice_Registration table then expected.
# What i see:
after deleting all entries from the table i login and am asked to register
my
Hi Fazla,
Unfortunately i'm unsure what cas.tgc.rememberMeMaxAge is used for and how
it differes from cas.ticket.tgt.rememberMe.timeToKillInSeconds=
--
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines: https://goo.gl/1VRrw7
-
to log out. We
have not changed any of the values at the `cas.tgc` level, other then the
encryption and signing keys, as such we will be using what ever the
defaults are,.
Thanks John
On Thursday, June 4, 2020 at 10:32:30 AM UTC+2, casuser wrote:
>
> Hello John and Ray,
>
> We ar
Ray
On Tue, Jun 2, 2020 at 6:04 PM Ray Bon wrote:
> John,
>
> I think timeout.maxTimeToLiveInSeconds provides a sliding window with no
> defined stop time.
>
Ahh thanks, This now makes sense why
org.apereo.cas.ticket.expiration.TimeoutExpirationPolicy
returns Long.MAX_VALUE fo
elp and patience and i think my references are correct
this time :)
John
[1]
https://wikitech.wikimedia.org/wiki/CAS-SSO/Administration#Session_timeout_handling
[2]
https://github.com/apereo/cas/blob/v6.1.5/core/cas-server-core-tickets-api/src/main/java/org/apereo/cas/ticket/expiration/buil
Hi Ray,
Thanks for the response however ...
On Mon, Jun 1, 2020 at 6:16 PM Ray Bon wrote:
> John,
>
>
> https://apereo.github.io/cas/6.1.x/ticketing/Configuring-Ticket-Expiration-Policy.html
>
> timeout.maxTimeToLive... is a hard timeout. The other is a 'must be used
Hello All,
In out config we set both cas.ticket.tgt.timeout.maxTimeToLiveInSeconds and
cas.ticket.tgt.maxTimeToLiveInSeconds to the same value believing theses
where the same and made a note to validate this with this group[1]. That
later step never happened and the config remained. however
Following up on this thread, it seems we have managed to reduce the lag on
our infrastructure by adding the following to /et/cas/config/cas.properties
spring.autoconfigure.exclude=org.springframework.boot.autoconfigure.web.embedded.EmbeddedWebServerFactoryCustomizerAutoConfiguration
I'm
//apereo.github.io/cas/6.0.x/configuration/Configuration-Properties-Common.html#delegated-authentication-settings
>
> Cheers,
> D.
>
> On March 11, 2020 at 03:57:17, John Stevens II (jstevens...@gmail.com)
> wrote:
>
> How do I set CAS to auto-redirect to a configured
We have also observed this slow down running cas 6.1.*. We have been
tracking our troubleshooting progress[1] but so far have not found anything
concrete. however my colleague has tracked down one pause to the following
part of sprin-webflow code
How do I set CAS to auto-redirect to a configured IDP when a user hits the
cas login page?
The documentation listed below states :
"CAS does allow options for auto-redirection of the authentication flow to
a provider, if only there is a single provider available and configured"
It's mentioned
Hi All,
after the blog post below i was hoping to see a 6.5.1 release to fix the
webflowcrypto issues. I see releases for the 6.0.* and 5.3.* branches but
not the 6.1.* and 6.2.* branches.
https://apereo.github.io/2020/02/08/webflowcrypto/
Is anyone able to provide a time line when theses
Hi Andy,
For the time being i need to use json, i can investigate using a different
storage backend and probably will when i need to start scaling the
application. however for now im happy to hold of the upgrade as this is
currently working for cas 6.0. i assumed its either a bug or something
rScheduler gets disabled.
On Fri, Nov 15, 2019 at 2:57 PM Andy Ng wrote:
> Hi John,
>
> Not familiar with uf2 at all, but I am trying this out in my simulation
> and I also encountered your bug as well.
>
> So
Hi All,
I have recently tested the 6.1 branch by using the cas-overlay-template
from apereo. however when i try to add u2f support i get the following
error
2019-11-15 10:47:32,512 WARN [org.apereo.cas.web.CasWebApplicationContext]
-
The change i made is here
$$db180f28.invoke()
~[cas-server-support-oauth-5.2.3.jar:5.2.3]
cas.properties
cas.authn.oauth.code.timeToKillInSeconds=60
Thanks
John
--
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines: https://goo.gl/1VRrw7
- Contributions: https
Hi, i have configured Cas5.2.3 with openid, after successful login from
openid provider , cas is redirecting to logged-in screen of cas sometimes.
I dont seen any errors in logs.
please help
Thanks
--
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
-
if this scenario can be handled.
Thanks
john
--
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines: https://goo.gl/1VRrw7
- Contributions: https://goo.gl/mh7qDG
---
You received this message because you are subscribed to the Google Groups "CAS
Comm
Andy, i am using cas 5.2.3 version. i have attached the cas.properties for
reference
Thanks
John.
On Friday, August 30, 2019 at 1:31:39 PM UTC+5:30, Andy Ng wrote:
>
> Hmm very strange, it shouldn't do that, at least it doesn't do that in my
> CAS deployment. What is the versi
Andy, i am using openid and as you mentioned, in generated json it has
serviceid as mentioned below. But CAS generates new file when server is
restarted instead of looking into already generated json file.
On Thursday, August 29, 2019 at 6:43:48 AM UTC+5:30, Andy Ng wrote:
>
> H
gt; Hi John,
>
> On seconds thought, those might be some necessary service for OpenID to
> use
>
> Can you check if the serviceId is something like `https://cas.example
> .org:8443/cas/oauth2.0/callbackAuthorize`?
>
> If so, then you probably don't want to remove those,
Hi, i have configured CAS 5.2.3 with Openid, during every server startup
the CAS generates RegexRegisteredService-.json files. How to avoid
generating these json files.
Thanks
John
--
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List
thanks danny,
I have created a PR upstrem[1] and the devs have been very responsive
hopfully we can gt this fixed.
[1]https://github.com/apereo/cas/pull/4188
--
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines: https://goo.gl/1VRrw7
-
Mr. Bond,
Thanks for your response. According to the docs[1] there are two ways too
use the Global Principal Attribute[1]
> Trigger MFA based on a principal attribute(s) whose value(s) matches a
regex pattern. Note that this
> behavior is only applicable if there is only a single MFA provider
[org.apereo.cas.authentication.DefaultMultifactorAuthenticationProviderResolver]
-
```
so it looks like ldap sends this value as an array and CAS doesn't like
that. Is anyone able to give advice on how i could get ldap to send this
[or some other attribute] as a string or fix this issue on the CAS side
Cheers John
--
- Website: https
Hi,
I am trying to configure CAS 6.0.1 to delegate to Azure AD using Oauth2
My overlay build.gradle contains the following:
dependencies {
compile
"org.apereo.cas:cas-server-webapp${project.appServer}:${casServerVersion}"
compile
Hi , I upgraded Cas from 5.2.3 to 5.3.8 and when i try to use the
url
http://localhost:8080/cas/oauth2.0/authorize?response_type=code_id=_uri=http://localhost:8080/test,
cas displays default login page(For a second) before redirecting to OpenId
provider login screen. I have set autoredirect
Hi,
I'm trying with Chrome incognito. I write what I wrote in
application.properties, but still in English. Do I delete the
messages.properties file and see the messages_uk.properties file? Do I have
to make a change elsewhere?
Thanks,
On Monday, February 18, 2019 at 12:44:23 PM UTC+3, Andy
Andy, can you help us to resolve this issue.
thanks
On Monday, February 18, 2019 at 10:17:23 AM UTC+5:30, john wrote:
>
> Andy, I dont see any error in logs. with above url its returning
> serviceticket to the redirect_uri but not with oauthCode. I am using same
> configu
Hi,
I added the following lines in application.properties.
Unfortunately, it did not happen. He doesn't see the change here. It comes
in English.
cas.locale.paramName=locale
cas.locale.defaultValue=uk
Thanks,
On Mon, Feb 18, 2019 at 4:20 AM Andy Ng wrote:
> Hi John,
>
Andy, I dont see any error in logs. with above url its returning
serviceticket to the redirect_uri but not with oauthCode. I am using same
configuration which was working in cas-5.2.3.
Thanks
Gopal
On Sunday, February 17, 2019 at 11:26:15 AM UTC+5:30, Andy Ng wrote:
>
> Hi John,
&
Hi,
cas i want to change default language. default file. But I want the default
of messages_uk.properties file. locale = uk comes when I do, but I don't
want to do that. I changed the contents of the messages.properties file and
copied the contents of the messages_uk.properties file there. But he
Hi, I have upgraded cas war from 5.2.3 to 5.3.7 and i am using the
URL
http://localhost:8080/cas/oauth2.0/authorize?response_type=code_id=_uri=http://localhost:8080/test
which was working in 5.2.3 and returns OAuthCode. But in 5.3.7 the url
does not return oauthcode.
Any advise or guidance
[org.apereo.cas.services.AbstractRegisteredServiceAttributeReleasePolicy] -
2019-01-23 07:17:28,290 DEBUG
[org.apereo.cas.services.AbstractRegisteredServiceAttributeReleasePolicy] -
On Tue, Jan 22, 2019 at 9:44 PM Ray Bon wrote:
> John,
>
> What happens on the client side?
> Check client logs to see if email is being received.
>
&
=email
>
> as described here?
>
> https://apereo.github.io/cas/5.0.x/installation/Configuration-Properties.html#jdbc
>
>
>
>
> On Tuesday, January 22, 2019 at 10:23:28 AM UTC+1, john adz wrote:
>>
>> Hi Michele,
>>
>> I get an invalid property erro
attribute "mail" is what you want to release.
>>
>> cas.authn.attributeRepository.attributes.mail=email
>> cas.authn.attributeRepository.defaultAttributesToRelease=*mail*
>>
>> Michele
>>
>>
>> On Tuesday, January 22, 2019 at 8:41:38 AM UTC+1, j
[org.apereo.inspektr.audit.support.Slf4jLoggingAuditTrailManager] - wrote:
> John,
>
> Attribute release policy for 5.0.x is here
> https://apereo.github.io/cas/5.0.x/integration/Attribute-Release-Policies.html
>
> You will also need to use SAML 1.1 or CAS 3 protocols,
> https://apereo.github.io/
Hi,
Hello, I want to send other information such as mail address or firstname
which is registered in user database. What should I add to
application.properties? Can you give an example?
On Fri, Jan 18, 2019 at 8:07 PM Ray Bon wrote:
> John,
>
> Do you mean you want to email
1 - 100 of 196 matches
Mail list logo
