Re: [cas-user] CAS Attribute

[org.apereo.inspektr.audit.support.Slf4jLoggingAuditTrailManager] - wrote: > John, > > Attribute release policy for 5.0.x is here > https://apereo.github.io/cas/5.0.x/integration/Attribute-Release-Policies.html > > You will also need to use SAML 1.1 or CAS 3 protocols, > https://apereo.github.io/

Re: [cas-user] CAS Attribute

Hi, Hello, I want to send other information such as mail address or firstname which is registered in user database. What should I add to application.properties? Can you give an example? On Fri, Jan 18, 2019 at 8:07 PM Ray Bon wrote: > John, > > Do you mean you want to email

[cas-user] CAS Attribute

Hi, I did cas mysql authentication. I want to send cas service to the user's email address. Add attribute, but not. Can you help me? application.properties cas.authn.accept.users= cas.authn.jdbc.query[0].fieldUser=username cas.authn.jdbc.query[0].sql=SELECT password FROM users WHERE

[cas-user] Deprecation of Google Plus Endpoint (CAS Google Delegated OAuth Login)

is retrieved. If there are no plans will the Google OAuth be deprecated? Thank you, John -- - Website: https://apereo.github.io/cas - Gitter Chatroom: https://gitter.im/apereo/cas - List Guidelines: https://goo.gl/1VRrw7 - Contributions: https://goo.gl/mh7qDG --- You received this message because you

[cas-user] CAS Protocol Specification Question

the way I read the requirement it should be [ "https://proxy2/pgtUrl;, "https://proxy1/pgtUrl; ]. Another thing is that I'm having a difficult time visualizing a scenario where authentication would proceed through multiple proxies. Does anyone have an example scenario to

[cas-user] 2 "Username" Options and How it Works with Attributes

I have this requirement where we're supposed to allow users to sign-in with either an email address or a phone number. 1) Can I tailor CAS for either of those 2 options? 2) When it comes to attributes, how do I pair that user (because the user id is different) with the attributes clause? --

Re: [cas-user] User Attributes for SAML 2.0

That got it! Thank you so much, David! -- - Website: https://apereo.github.io/cas - Gitter Chatroom: https://gitter.im/apereo/cas - List Guidelines: https://goo.gl/1VRrw7 - Contributions: https://goo.gl/mh7qDG --- You received this message because you are subscribed to the Google Groups "CAS

Re: [cas-user] User Attributes for SAML 2.0

My "username" column is called email, but even with your suggestions I still get the following DEBUG output in logs. Found [0] attributes for principal [jdgio...@gmail.com] from the attribute repository. This is why I think there something wrong with the query. Log level is set to debug, but

[cas-user] Re: Attribute Release on CAS Management Services: 5.2.4

Can you tell me how you got attributes working with JDBC? I'm having a hell of a time. -- - Website: https://apereo.github.io/cas - Gitter Chatroom: https://gitter.im/apereo/cas - List Guidelines: https://goo.gl/1VRrw7 - Contributions: https://goo.gl/mh7qDG --- You received this message

Re: [cas-user] User Attributes for SAML 2.0

Is there any way to show the sql used to get user attributes? -- - Website: https://apereo.github.io/cas - Gitter Chatroom: https://gitter.im/apereo/cas - List Guidelines: https://goo.gl/1VRrw7 - Contributions: https://goo.gl/mh7qDG --- You received this message because you are subscribed to

Re: [cas-user] User Attributes for SAML 2.0

Same error. Do you think that maybe my select statement is wrong? Specifically the `WHERE {0}` That just seems wrong to me. What is {0}? -- - Website: https://apereo.github.io/cas - Gitter Chatroom: https://gitter.im/apereo/cas - List Guidelines: https://goo.gl/1VRrw7 - Contributions:

Re: [cas-user] User Attributes for SAML 2.0

cas.authn.accept.users= cas.authn.jdbc.query[0].ddlAuto=none cas.authn.jdbc.query[0].dialect=org.hibernate.dialect.MySQLDialect cas.authn.jdbc.query[0].driverClass=com.mysql.cj.jdbc.Driver cas.authn.jdbc.query[0].fieldPassword=password cas.authn.jdbc.query[0].password=

Re: [cas-user] User Attributes for SAML 2.0

The error I see on the CAS server is the following: 2018-05-21 20:15:07,348 INFO [org.apereo.cas.support.saml.web.idp.profile.sso.SSOSamlProfileCallbackHandlerController] - 2018-05-21 20:15:07,656 WARN [org.apereo.cas.services.ReturnMappedAttributeReleasePolicy] -

Re: [cas-user] User Attributes for SAML 2.0

David, I'm still trying to understand how user attributes are supposed to work. Let's say I'm using JDBC as my source for user data and credentials. If I'm writing the JSON service to map datasource fields to SAML attributes, how is this done? Is it naming convention? Do I need to include a

Re: [cas-user] User Attributes for SAML 2.0

I've had very little success making the management service work (like other things). I try to follow the documentation, but something is always amiss. My personal problem is that I'm very much a TDD developer. I have issues not being able to effectively test what I'm doing. -- - Website:

Re: [cas-user] User Attributes for SAML 2.0

Would this example you provided be applicable to a jdbc backend? -- - Website: https://apereo.github.io/cas - Gitter Chatroom: https://gitter.im/apereo/cas - List Guidelines: https://goo.gl/1VRrw7 - Contributions: https://goo.gl/mh7qDG --- You received this message because you are subscribed to

Re: [cas-user] User Attributes for SAML 2.0

Do you have an example of this? -- - Website: https://apereo.github.io/cas - Gitter Chatroom: https://gitter.im/apereo/cas - List Guidelines: https://goo.gl/1VRrw7 - Contributions: https://goo.gl/mh7qDG --- You received this message because you are subscribed to the Google Groups "CAS

[cas-user] User Attributes for SAML 2.0

How do I set up user attributes for SAML 2.0? -- - Website: https://apereo.github.io/cas - Gitter Chatroom: https://gitter.im/apereo/cas - List Guidelines: https://goo.gl/1VRrw7 - Contributions: https://goo.gl/mh7qDG --- You received this message because you are subscribed to the Google Groups

[cas-user] SAML Public Key for Metadata

For a IdP metadata file, what should the KeyDescriptor be? Is it the public key of the web server? -- - Website: https://apereo.github.io/cas - Gitter Chatroom: https://gitter.im/apereo/cas - List Guidelines: https://goo.gl/1VRrw7 - Contributions: https://goo.gl/mh7qDG --- You received this

Re: [cas-user] Re: Working on Setting Up SAML 2.0 for the First Time

We're the identify provider and the vendor is the service provider. -- - Website: https://apereo.github.io/cas - Gitter Chatroom: https://gitter.im/apereo/cas - List Guidelines: https://goo.gl/1VRrw7 - Contributions: https://goo.gl/mh7qDG --- You received this message because you are subscribed

Re: [cas-user] Re: Working on Setting Up SAML 2.0 for the First Time

Ok, this is just a guess here, but the vendor I'm trying to implement CAS SAML to is for Identity Provider. Is it possible we've got this confused, because our metadata.xml is setup for SPSSODescriptor. -- - Website: https://apereo.github.io/cas - Gitter Chatroom: https://gitter.im/apereo/cas

Re: [cas-user] Re: Working on Setting Up SAML 2.0 for the First Time

Is that attribute required? Right now it is static. -- - Website: https://apereo.github.io/cas - Gitter Chatroom: https://gitter.im/apereo/cas - List Guidelines: https://goo.gl/1VRrw7 - Contributions: https://goo.gl/mh7qDG --- You received this message because you are subscribed to the Google

Re: [cas-user] Re: Working on Setting Up SAML 2.0 for the First Time

I get the XML output as expected. https://vendor-site.com/Pages/Auth/Login.aspx;> https://vendor-site.com/Pages/Auth/Login.aspx; index="1" /> -- - Website: https://apereo.github.io/cas - Gitter Chatroom: https://gitter.im/apereo/cas - List Guidelines: https://goo.gl/1VRrw7

Re: [cas-user] Re: Working on Setting Up SAML 2.0 for the First Time

Looking at the logs more I did find these WARNs: 2018-05-08 17:02:31,227 WARN > [org.apereo.cas.support.saml.services.idp.metadata.SamlRegisteredServiceServiceProviderMetadataFacade] > > - https://vendor-site.com/Pages/Auth/Login.aspx] in > metadata provider Ensure the metadata is valid and

Re: [cas-user] Re: Working on Setting Up SAML 2.0 for the First Time

Thanks, David. Is the dashboard the management overlay? -- - Website: https://apereo.github.io/cas - Gitter Chatroom: https://gitter.im/apereo/cas - List Guidelines: https://goo.gl/1VRrw7 - Contributions: https://goo.gl/mh7qDG --- You received this message because you are subscribed to the

Re: [cas-user] Re: Working on Setting Up SAML 2.0 for the First Time

If I don't set this property does it affect the vendor integration I'm attempting to do? -- - Website: https://apereo.github.io/cas - Gitter Chatroom: https://gitter.im/apereo/cas - List Guidelines: https://goo.gl/1VRrw7 - Contributions: https://goo.gl/mh7qDG --- You received this message

Re: [cas-user] Re: Working on Setting Up SAML 2.0 for the First Time

I noticed that my /cas/idp/metadata endpoint returns the following http://www.w3.org/2000/09/xmldsig#; xmlns:shibmd= "urn:mace:shibboleth:metadata:1.0" xmlns:xml= "http://www.w3.org/XML/1998/namespace; xmlns:mdui= "urn:oasis:names:tc:SAML:metadata:ui" entityID="https://cas.example.org/idp; >

Re: [cas-user] Re: Working on Setting Up SAML 2.0 for the First Time

What I meant was that Matthew asked about my JSON using the @class org.apereo.cas.support.saml.services.SamlRegisteredService Then asked if I registered the IdP endpoint. From the tutorial he pointed me towards, I can't tell if I'm creating both a SamlRegisteredService and a

[cas-user] Re: Working on Setting Up SAML 2.0 for the First Time

Are there 2 service JSON files I'm supposed to create? -- - Website: https://apereo.github.io/cas - Gitter Chatroom: https://gitter.im/apereo/cas - List Guidelines: https://goo.gl/1VRrw7 - Contributions: https://goo.gl/mh7qDG --- You received this message because you are subscribed to the

[cas-user] Re: Working on Setting Up SAML 2.0 for the First Time

Yes, it is. { "@class": "org.apereo.cas.support.saml.services.SamlRegisteredService", "serviceId": "https://vendor-site.com/Pages/Auth/Login.aspx;, "name": "SAML Authentication Request", "id": 1003, "evaluationOrder": 1, "metadataLocation":

[cas-user] Working on Setting Up SAML 2.0 for the First Time

I'm not too familiar with SAML 2.0 and I need to set up our existing CAS (currently using CAS protocol). I've followed documentation, but unfortunately I'm unable to get the application to authorize. The error I get in logs is: CAS has found a match for service >

Re: [cas-user] Re: Grant Type password Not Working

Success! I removed the service in header property. Thanks, Riley. Tremendous help. -- - Website: https://apereo.github.io/cas - Gitter Chatroom: https://gitter.im/apereo/cas - List Guidelines: https://goo.gl/1VRrw7 - Contributions: https://goo.gl/mh7qDG --- You received this message because

Re: [cas-user] Re: Grant Type password Not Working

Hmm... actually I see this in the log before an exception. Unauthorized Service Access. Service [oauthclient] is not found in service > registry. -- - Website: https://apereo.github.io/cas - Gitter Chatroom: https://gitter.im/apereo/cas - List Guidelines: https://goo.gl/1VRrw7 - Contributions:

Re: [cas-user] Re: Grant Type password Not Working

Okay! Better! Now I get an invalid_grant in the response. -- - Website: https://apereo.github.io/cas - Gitter Chatroom: https://gitter.im/apereo/cas - List Guidelines: https://goo.gl/1VRrw7 - Contributions: https://goo.gl/mh7qDG --- You received this message because you are subscribed to the

Re: [cas-user] Re: Grant Type password Not Working

It is almost like the /etc/cas/services is ignored. I only see 3 services registering and when I look in the tmp folder they are the ones that come with the dependencies. -- - Website: https://apereo.github.io/cas - Gitter Chatroom: https://gitter.im/apereo/cas - List Guidelines:

Re: [cas-user] Re: Grant Type password Not Working

I get this in logs and far as I know you and I are running the same exact implementation. 2018-05-04 14:38:44,332 WARN > [org.apereo.cas.services.RegisteredServiceAccessStrategyUtils] - > -- - Website: https://apereo.github.io/cas - Gitter Chatroom: https://gitter.im/apereo/cas - List

[cas-user] Re: Grant Type password Not Working

You are correct, I committed some configs out of sync. I do apologize. Where you able to get the grant_type=password to work? -- - Website: https://apereo.github.io/cas - Gitter Chatroom: https://gitter.im/apereo/cas - List Guidelines: https://goo.gl/1VRrw7 - Contributions:

Re: [cas-user] How Do I Debug CAS When Using Overlay?

This project has my code https://github.com/jdgiotta/cas-oauth-project I've already posted in another thread my problems with OAuth and the steps I took to make the above project run. -- - Website: https://apereo.github.io/cas - Gitter Chatroom: https://gitter.im/apereo/cas - List Guidelines:

Re: [cas-user] How Do I Debug CAS When Using Overlay?

I've solved zero issues with logs. I mostly get statements services not matching in registry. If service files aren't matching how do I determine what it is comparing against? Because I followed the documentation, service files are in the /etc/cas/services directory. -- - Website:

[cas-user] How Do I Debug CAS When Using Overlay?

I'm trying to solve what seems to be just unsolvable issues. How do I debug CAS if I'm using the overlay template? Is it better to not use the overlay in this case? -- - Website: https://apereo.github.io/cas - Gitter Chatroom: https://gitter.im/apereo/cas - List Guidelines:

[cas-user] Re: Grant Type password Not Working

I could really use some assistance with this. -- - Website: https://apereo.github.io/cas - Gitter Chatroom: https://gitter.im/apereo/cas - List Guidelines: https://goo.gl/1VRrw7 - Contributions: https://goo.gl/mh7qDG --- You received this message because you are subscribed to the Google Groups

[cas-user] Re: Grant Type password Not Working

Here is the project as is https://github.com/jdgiotta/cas-oauth-project I've gotten no where is solving my problem. -- - Website: https://apereo.github.io/cas - Gitter Chatroom: https://gitter.im/apereo/cas - List Guidelines: https://goo.gl/1VRrw7 - Contributions: https://goo.gl/mh7qDG ---

[cas-user] Re: Grant Type password Not Working

uth2.0/accessToken \ -H 'Cache-Control: no-cache' \ -H 'content-type: multipart/form-data; boundary=WebKitFormBoundary7MA4YWxkTrZu0gW' \ -F grant_type=password \ -F client_id=oauthclient \ -F username=john \ -F password=password -- - Website: https://apereo.github.io/cas

[cas-user] Grant Type password Not Working

When I attempt to perform a POST request to accessToken?grant_type=password the server does not recognize the service: 2018-05-02 10:09:31,679 WARN [org.apereo.cas.services.RegisteredServiceAccessStrategyUtils] - I'm not sure how to get the endpoint to properly responding. -- - Website:

[cas-user] Re: Basic Example of CAS of Overlay Implementing OAuth2.0

ce for testing. > > On Tuesday, May 1, 2018 at 3:03:47 PM UTC-4, John D Giotta wrote: >> >> Greetings, >> I'm attempting to use CAS as an OAuth2.0 server. I've read the >> documentation here: >> https://apereo.github.io/cas/5.2.x/installation/OAuth-OpenId-Authentication

[cas-user] Basic Example of CAS of Overlay Implementing OAuth2.0

Greetings, I'm attempting to use CAS as an OAuth2.0 server. I've read the documentation here: https://apereo.github.io/cas/5.2.x/installation/OAuth-OpenId-Authentication.html but I just can't seem to get it work My oauth-1001.json in /etc/cas/service { "@class" :

Re: [cas-user] JIRA CAS configuration - is it possible to fallback to authentication against internal directory?

by the CAS authentication filter (thereby allowing users to authenticate against JIRA's internal directory). On Tuesday, March 13, 2018 at 11:50:43 AM UTC-6, rbon wrote: > > John, > > Moodle has this as an option. If multiple login systems are available, > Moodle will redirect

Re: [cas-user] Initial CAS builds failing at core:cas-server-core-configuration:test

That is actually what I was attempting…looks like somewhere along the line I checked out the main repo thinking that I as checking out the grade overlay template…so I *was* doing something stupid…thanks for the prompt to check that again. John Coleman Director of Administrative Systems jcole

[cas-user] Initial CAS builds failing at core:cas-server-core-configuration:test

not essential). Should I, in fact, be checking out a different branch for 5.2? Thanks for any insight you may offer. Best regards, John Coleman -- - Website: https://apereo.github.io/cas - Gitter Chatroom: https://gitter.im/apereo/cas - List Guidelines: https://goo.gl/1VRrw7 - Contributions: https

[cas-user] JIRA CAS configuration - is it possible to fallback to authentication against internal directory?

because that would mean SSO wouldn't apply to any of those URLs (which they should most of the time). I'm just looking for a solution that would allow me to authenticate to JIRA using either CAS or the internal directory, with some way to toggle between both authentication systems. Many thanks, John

[cas-user] Re: CAS 5.0.6, VersionResourceResolver and Cache-Busting

need to be versioned From : To: Note: Assets can still be referenced by their non-hashed names so you only have to update references to files that will change between versions Note: *spring.resources *did not require modification from overlay defaults O

[cas-user] Re: CAS 5.0.6, VersionResourceResolver and Cache-Busting

ter at to where to look for that in CAS code? On Thursday, January 11, 2018 at 10:45:50 AM UTC-7, John Sampson wrote: > > Hello, I'm currently upgrading a highly customized 4.X CAS version to > 5.0.6 and running into a problem with cached assets on our F5 Appliance. > > The problem

[cas-user] CAS 5.0.6, VersionResourceResolver and Cache-Busting

ng there, but wanted to get this email in the event anyone has some experience or advice with this. Thanks, -John -- - Website: https://apereo.github.io/cas - Gitter Chatroom: https://gitter.im/apereo/cas - List Guidelines: https://goo.gl/1VRrw7 - Contributions: https://goo.gl/mh7qDG --- You r

RE: [cas-user] CAS denied as iFrame

Look at your tomcat or apache config… Our security folks had us turn on header security in tomcat. --- Web.xml--- httpHeaderSecurity org.apache.catalina.filters.HttpHeaderSecurityFilter true httpHeaderSecurity /* -John Ourada From: cas

[cas-user] Fwd: 40th Reunion Community Service Project overview

-- Forwarded message -- From: Elizabeth Maass <elizabeth.t.ma...@gmail.com> Date: Thu, Oct 12, 2017 at 6:01 PM Subject: Fwd: 40th Reunion Community Service Project overview To: John Bruestle <j...@retechnologies.com> Cc: Paul Laud <pl...@shelburneassociates.com>

Re: [cas-user] [CAS 5.0.1] Unable to browse any link of my CAS Client web application after successful user authentication through CAS Server

es I need, so that I can pass them to the Model View of my pages! Cheers! J.B. On Friday, June 23, 2017 at 1:25:09 AM UTC+9, rbon wrote: > > John, > > I have not used Spring Boot but you should not have to write your own > filter unless you want some special processing. Se

Re: [cas-user] [CAS 5.0.1] Unable to browse any link of my CAS Client web application after successful user authentication through CAS Server

s a working Spring Boot configuration showing zero problems with CAS and would be so kind to share it with the rest of us, I would be the happiest person in the world. Thanks! :D J.B. On Thursday, June 22, 2017 at 12:55:01 AM UTC+9, rbon wrote: > > John, > > Check config of

Re: [cas-user] [CAS 5.0.1] Unable to browse any link of my CAS Client web application after successful user authentication through CAS Server

upport > > And here’s a sample Boot app demonstrating the use of this library -> > https://github.com/cas-projects/bootiful-cas-client > > Cheers, > D. > > > From: John Barleycorn <uammo...@gmail.com> > Reply: cas-...@apereo.org <cas...@apereo.org> > Dat

[cas-user] [CAS 5.0.1] Unable to browse any link of my CAS Client web application after successful user authentication through CAS Server

Good day everybody. I am facing a problem on Apereo CAS 5.0.1, and after trying for an entire day to look for a solution by myself I decided to ask some help from the community. Oh, I am completely new to CAS, having started experimenting with this technology no more than 7 days ago, so I hope

Re: [cas-user] SAML setup

boleth.net/nexus/content/repositories/releases > > > > D. > > From: John Wynstra <jdwyns...@gmail.com> <jdwyns...@gmail.com> > Reply: cas-user@apereo.org <cas-user@apereo.org> <cas-user@apereo.org> > Date: March 7, 2017 at 3:15:07 PM > To: cas-u

[cas-user] SAML setup

I am trying to add saml support to CAS 5.0.3 maven overlay. After adding the following dependency to pom.xml org.apereo.cas cas-server-support-saml-idp ${cas.version} the repackaged CAS.WAR file will deploy but not start on TomCat. I have not configured any of the saml properties in

[cas-user] UI customization question & CAS Maven overlay

this directory structure and add only the files that I want to override? John Wynstra -- - CAS gitter chatroom: https://gitter.im/apereo/cas - CAS mailing list guidelines: https://apereo.github.io/cas/Mailing-Lists.html - CAS documentation website: https://apereo.github.io/cas - CAS project website: https

Re: [cas-user] deployerConfigContext.xml question

gt; Which documentation? > > -- > Misagh > > From: John Wynstra <jdwyns...@gmail.com> <jdwyns...@gmail.com> > Reply: cas-user@apereo.org <cas-user@apereo.org> <cas-user@apereo.org> > Date: February 18, 2017 at 12:34:08 AM > To: cas-user@apereo.org <cas-

[cas-user] deployerConfigContext.xml question

Working with CAS-Maven-overlay 5.0.2 When documentation tells me to add sections to deployerConfigContext.xml am I supposed to do that within target directory structure OR am I supposed to create a deployerConfigContext.xml in the etc/cas/config directory and make my changes there? -- - CAS

[cas-user] 502 during package this morning

Gateway. John Wynstra -- - CAS gitter chatroom: https://gitter.im/apereo/cas - CAS mailing list guidelines: https://apereo.github.io/cas/Mailing-Lists.html - CAS documentation website: https://apereo.github.io/cas - CAS project website: https://github.com/apereo/cas --- You received this message

[cas-user] Log question CAS Maven Overlay with Tomcat

log rotate. Is it possible I need to be working with a tomcat configuration? John Wynstra -- - CAS gitter chatroom: https://gitter.im/apereo/cas - CAS mailing list guidelines: https://apereo.github.io/cas/Mailing-Lists.html - CAS documentation website: https://apereo.github.io/cas - CAS proje

[cas-user] cas-maven-overlay config and customization questions

guration changes. 2.) I am under the impression that SAML support is much move developed in version 5 than 4 -- is this assumption correct? John Wynstra -- - CAS gitter chatroom: https://gitter.im/apereo/cas - CAS mailing list guidelines: https://apereo.github.io/cas/Mailing-Lists.html - CAS d

Re: [cas-user] Re: CAS 4.2.2 Distributed Issue - NullPointerException - Unable to correctly extract the Initialization Vector

Unfortunately not. I am no longer on the project either. On Mon, 12 Dec 2016, 04:54 Colin Wilkinson, wrote: > We are getting the same issue in production, did you manage to solve this > > > On Wednesday, 23 November 2016 17:18:34 UTC+11, liu chenghai wrote: > > I have the

Re: [cas-user] Trouble getting LdapAuthenticationHandler Configured.

Do you have debugging turned on for ldap in your log file? On Nov 17, 2016 9:01 AM, "Daniel" wrote: > Greetings, > > After being unable to authenticate directly to our Oracle 12g database > using the Encoded Query option, we have synced our users to an openLDAP > instance. >

[cas-user] Re: CAS 4.2.2 Distributed Issue - NullPointerException - Unable to correctly extract the Initialization Vector

Just to add, This seems to be only happening on our QA environments and the only difference I can think of is the QA systems are using self signed certs whereas production systems are not. That might trigger something in someones brain maybe :) Thanks, John On Monday, 7 November 2016 15:32

Re: [cas-user] Ticket encryption using Memcached not working

Done: https://github.com/apereo/cas/issues/1942 Thanks! -- You received this message because you are subscribed to the Google Groups "CAS Community" group. To unsubscribe from this group and stop receiving emails from it, send an email to cas-user+unsubscr...@apereo.org. To post to this

Re: [cas-user] Ticket encryption using Memcached not working

egistry.MemCacheTicketRegistry$AjcClosure1.run( MemCacheTicketRegistry.java:1) [cas-server-integration-memcached-4.2.4.jar: 4.2.4] What do you think? Thanks again, John -- You received this message because you are subscribed to the Google Groups "CAS Community" group. To unsubscribe from t

[cas-user] Ticket encryption using Memcached not working

I am working on a clustered CAS 4.2.4 installation (deployed to two Linux-based Tomcat servers) based on the overlay template at https://github.com/Jasig/cas-overlay-template.git. I am using two Memcached instances for ticket management. These Memcached instances are on separate servers in

Re: [cas-user] Re: Cas multiple service tickets created and multiple tickets failed validation for same user

and will post any updates. Thanks for the help guys. On Wednesday, August 3, 2016 at 12:30:47 PM UTC-4, Ray Bon wrote: > > John, > > Your service ticket is not 'immediately invalidated'. It seems unlikely > your client takes so long to request st validation. It looks like it sends &g

Re: [cas-user] CAS Couchbase Concurrent Timeout

Thanks Misagh! On Thursday, July 14, 2016 at 8:34:26 AM UTC-4, Misagh Moayyed wrote: > > Default is 10 seconds. To increase, set “svcreg.couchbase.timeout” in your > properties to a larger value. > > -- > Misagh > > From: John Stevens II <jstev...@gmail.com> &

[cas-user] CAS Couchbase Concurrent Timeout

Has anyone encountered this issue or know how to avoid it? Is there a way to increase the timeout? Looks like the couchbase connections timeout to my service registry and production is impacted because CAS thinks there are no authorized services. I have couchbase settings configured for 3

Re: [cas-user] Re: Tips for high availability ticket registry?

Thanks folks, you are all very nice people, hazelcast "just worked" from what I can gather, nice work cas team. Thanks all for your input! > >> -- You received this message because you are subscribed to the Google Groups "CAS Community" group. To unsubscribe from this group and stop

Re: [cas-user] Re: Tips for high availability ticket registry?

TicketRegistry-A-Sinking-Ship-td4256973.html > > Best, > D. > > On Jul 5, 2016, at 11:04 AM, John Rellis <john.d.rel...@gmail.com> wrote: > > I was also curious, i was able to get the JPA ticket registry working > (that is, storing the tickets in the database) in a few mi

[cas-user] Tips for high availability ticket registry?

or Couchbase. I haven't really used any of these to such an extent that I'd be leaning to favour any so pros or cons would be greatly appreciated. Thanks, John -- You received this message because you are subscribed to the Google Groups "CAS Community" group. To unsubscribe from

[cas-user] Redirect to arbitrary URL after logout

and redirect to a different URL that is not a service, so maybe http://localhost:8082/app/somewhere-else I tried testing it and it doesn't work unless "service" is actually defined as a service. Is it possible to redirect somewhere arbitrarily? Thanks, John -- You received th

Re: [cas-user] Rest API Service Ticket Validation Issue

gt; it. M2 is now available. > > > > *From:* cas-...@apereo.org [mailto:cas-...@apereo.org > ] *On Behalf Of *John Stevens II > *Sent:* Tuesday, June 21, 2016 11:09 AM > *To:* CAS Community <cas-...@apereo.org > > *Cc:* mmoa...@unicon.net > *Subject:* Re: [cas-use

Re: [cas-user] Any published use of cas by "fortune 500" companies?

gt; > On Jun 21, 2016, at 9:05 AM, Christopher Myers <cmy...@mail.millikin.edu> > wrote: > > Ellucian and Heartland Payment Systems use it for their product offerings > (both on-prem and hosted;) not sure where they fall on the list though. > > > >>> John Rellis <jo

[cas-user] Any published use of cas by "fortune 500" companies?

, John -- You received this message because you are subscribed to the Google Groups "CAS Community" group. To unsubscribe from this group and stop receiving emails from it, send an email to cas-user+unsubscr...@apereo.org. To post to this group, send email to cas-user@apereo.org. Visit

Re: [cas-user] Rest API Service Ticket Validation Issue

T becomes your access token). > > > > Or you just use the OAuth support...or some other form of non-interactive > AuthN. > > > > *From:* cas-...@apereo.org [mailto:cas-...@apereo.org > ] *On Behalf Of *John Stevens II > *Sent:* Monday, June 20, 2016 7:04

Re: [cas-user] Rest API Service Ticket Validation Issue

r it’s not meant to be. Your better options > are to use proxying where you get a PGT, and you get PTs based on that PGT > you get. (The PGT becomes your access token). > > Or you just use the OAuth support...or some other form of non-interactive > AuthN. > > *From:* cas-.

Re: [cas-user] Rest API Service Ticket Validation Issue

this the wrong way? On Monday, June 20, 2016 at 9:23:38 AM UTC-4, Misagh Moayyed wrote: > > Why multiple times? What's the story there? > --Misagh > On Sun, Jun 19, 2016 at 2:29 PM, John Stevens II <jstev...@gmail.com > > wrote: > > Well not necessarily a third app

Re: [cas-user] Possible to have more than one QueryDatabaseAuthenticationHandlers with diff properties?

> Nothing yet - work in progress

[cas-user] Possible to have more than one QueryDatabaseAuthenticationHandlers with diff properties?

Hey folks, I need to authenticate against more than one database, each database has different schema and some have different password hash schemes. Authenticating against any one of these should equal a success. Is it possible to have more than one QueryDatabaseAuthenticationHandler with

[cas-user] Re: Cas 4.2.2 management webapp redirects to logout

To all who may be having this problem, I switched to tomcat version 8 and all my issues regarding this issue were resolved. Nothing was changes as far as my configuration. On Monday, June 6, 2016 at 10:55:58 AM UTC-4, John Stevens II wrote: > > Hi guys, > > I'm having an issue

Re: [cas-user] queryDatabaseAuthenticationHandler not being called (CAS 4.2.2)

nfigContext.xml > > > > > *From:* cas-...@apereo.org [mailto:cas-...@apereo.org > ] *On Behalf Of *John Rellis > *Sent:* Friday, June 3, 2016 7:10 AM > *To:* CAS Community <cas-...@apereo.org > > *Subject:* [cas-user] queryDatabaseAuthenticationHandler not being called >

Re: [cas-user] Re: Jasig CAS and ADFS Troobleshooting blank screen after successfull login

to be customized. In your log you do not show sAMAccountName being returned by ADFS, so I'm guessing that your mutator is creating it. Otherwise I'm not sure what is going on. -- John Gasper IAM Consultant Unicon, Inc. PGP/GPG Key: 0xbafee3ef From: <cas-user@apereo.org> on behalf of Yves <

Re: [cas-user] ADFS and CAS Issue

Hi David, The null validation credential appears to be the signature credential. Did you copy the ADFS signing key over to CAS and point the config at the exported cert? John -- John Gasper IAM Consultant Unicon, Inc. PGP/GPG Key: 0xbafee3ef From: <cas-user@apereo.org> on behalf of

Re: [cas-user] Jar version collision with Maven Overlay

, but just one from experience… If you look into the CAS MFA project you'll notice may times where this is needed because of the multiple overlays used by that. -- John Gasper IAM Consultant Unicon, Inc. PGP/GPG Key: 0xbafee3ef From: <cas-user@apereo.org> on behalf of Jonathan Labin <jo

Re: [cas-user] how to get shiro roles and permissions attributes from cas server

The shiro cas client works just nicely with the v3 protocol; have been using it since last summer to push attributes down to client. Tested both SAML and CAS v3; both worked but went with v3 since it's a much thinner stack. John RedZone Software On 1/7/2016 4:05 PM, Dmitriy Kopylenko wrote

Re: [cas-user] Returning userid in Validation Response

have no idea of any other client libraries updated to > support that. > > Hope that gives you a few more pointers. > > Best, > Dmitriy. > > > > Sent from my iPhone > > On Jan 6, 2016, at 16:34, John Bruestle <j...@retechnologies.com> wrote: > > Thanks.

Re: [cas-user] Returning userid in Validation Response

I do get more back when I call p3/serviceValidate, but cas:user still has the username in it. On Wed, Jan 6, 2016 at 5:12 PM, John Bruestle <j...@retechnologies.com> wrote: > Without the use of a client library. > > On Wed, Jan 6, 2016 at 5:11 PM, John Bruestle <j...@retechnol

Re: [cas-user] Returning userid in Validation Response

Without the use of a client library. On Wed, Jan 6, 2016 at 5:11 PM, John Bruestle <j...@retechnologies.com> wrote: > I'm calling : /serviceValidate > > On Wed, Jan 6, 2016 at 4:46 PM, Dmitriy Kopylenko <dkopyle...@unicon.net> > wrote: > >> Are you manually calli

Re: [cas-user] Returning userid in Validation Response

sername in my Validation Response: http://www.yale.edu/tp/cas;> john Here is my service definiteion: { "@class" : "org.jasig.cas.services.RegexRegisteredService", "serviceId" : "^http://localhost/bonfire/cas/.*;, "name" : "Bo

<    1   2