tempts. But in general we want the LDAP to be the login validator.
We already use a supplier with radius to handle our VPN login with multifactor,
but for test purpose have made our own simpel radius server.
--
Ray Bon
Programmer Analyst
Development Services, University Systems
2507218831 | CLE 01
to be the login validator.
We already use a supplier with radius to handle our VPN login with multifactor,
but for test purpose have made our own simpel radius server.
--
Ray Bon
Programmer Analyst
Development Services, University Systems
2507218831 | CLE 019 | rb...@uvic.ca
I respectfully
DC7B0DECBCBCE0%40SN6PR02MB4958.namprd02.prod.outlook.com<https://groups.google.com/a/apereo.org/d/msgid/cas-user/SN6PR02MB4958C8D5C1B3EAADC7B0DECBCBCE0%40SN6PR02MB4958.namprd02.prod.outlook.com?utm_medium=email_source=footer>.
--
"Confusion is a word we have invented for an order which is not
read like this:
cas.ticket.registry.hazelcast.cluster.members=A
cas.ticket.registry.hazelcast.cluster.instanceName=A
#
## or simply comment this line out
#
cas.ticket.registry.hazelcast.cluster.port=5701
Thx!
Yan
--
Ray Bon
Programmer Analyst
Development Services, University Systems
2507218831 | CLE 019 | r.
rue
cas.authn.policy.req.tryAll=false
cas.authn.policy.req.handlerName=MyAuthenticationHandler
cas.authn.policy.req.enabled=true
--
Ray Bon
Programmer Analyst
Development Services, University Systems
2507218831 | CLE 019 | r...@uvic.ca<mailto:r...@uvic.ca>
I respectfully acknowledg
would be the best approach? Use the Java CAS
Client and do more or less the same what the CasAuthenticationFilter is doing
and implement it on my own?
Cheers,
Paul
--
Ray Bon
Programmer Analyst
Development Services, University Systems
2507218831 | CLE 019 | r...@uvic.ca<mailto:r...@uvic.ca&
want to tested with
application on the ubuntu client
please i need how to configure client cas on ubuntu .
Thank you
--
Ray Bon
Programmer Analyst
Development Services, University Systems
2507218831 | CLE 019 | r...@uvic.ca<mailto:r...@uvic.ca>
I respectfully acknowledge that my place o
${cas.version}
After that, when I was adding JPA ticket registry {
org.apereo.cas
cas-server-support-jpa-ticket-registry
${cas.version}
}
I got this error
2019-07-02 11:54:37,058 WARN [org.apereo.cas.web.CasWebApplicationContext] -
Any help?
--
Ray Bon
Programmer Analyst
Development
tocol=HTTP/1.1
Is there somethng I could've missed to enable LDAP auth the right way...?
--
Ray Bon
Programmer Analyst
Development Services, University Systems
2507218831 | CLE 019 | r...@uvic.ca<mailto:r...@uvic.ca>
I respectfully acknowledge that my place of work is located withi
was hoping to get a
more detailed installation guide.
Thank you
Heather
--
Ray Bon
Programmer Analyst
Development Services, University Systems
2507218831 | CLE 019 | r...@uvic.ca<mailto:r...@uvic.ca>
I respectfully acknowledge that my place of work is located within the
ancestral, tradi
for the management server.
Can someone point me in the right direction?
--
Ray Bon
Programmer Analyst
Development Services, University Systems
2507218831 | CLE 019 | r...@uvic.ca<mailto:r...@uvic.ca>
I respectfully acknowledge that my place of work is located within the
ancestral, tradi
test
true
false
--
Ray Bon
Programmer Analyst
Development Services, University Systems
2507218831 | CLE 019 | r...@uvic.ca<mailto:r...@uvic.ca>
I respectfull
Heather,
There should be no problem. The protocol remains consistent.
Ray
On Tue, 2019-06-25 at 06:18 -0700, heather essink wrote:
I have been trying to find any documentation on if CAS 6.0 is compatible with
uPortal 4.2.1?
--
Ray Bon
Programmer Analyst
Development Services, University
n't work because again, $_SERVER['REMOTE_ADDR'] returns
the load balancer's IP. I think instead of setting $client_ip =
$_SERVER['REMOTE_ADDR'];, it should check the various x-forwarded-for, etc.
address I mentioned in my first email... or am I misunderstanding the code?
Thanks,
Austin
You should look at your LDAP logs. You could also put your CAS logs in debug or
even trace mode.
Ray
On Tue, 2019-06-25 at 01:40 +0100, EL AZZAOUI Mustafa wrote:
i try it but didn't Work :(
Le mar. 25 juin 2019 à 00:49, Ray Bon mailto:r...@uvic.ca>> a
écrit :
Mustafa
Mustafa,
Try this for userFilter
cas.authn.ldap[0].userFilter=cn={user}
{user} will be substituted for the user logging in.
Ray
On Mon, 2019-06-24 at 23:42 +0100, EL AZZAOUI Mustafa wrote:
Hi Ray Bon ,
yes this is new integration i want to intergate my cas server with my LDAP
server
Mustafa,
Is this a new integration or is it the result of a change?
You should post your config files.
Ray
On Sat, 2019-06-22 at 18:14 -0700, Mustafa wrote:
HI?
I'am trying to Integrate My cas server with LDAP ( CAS v 5.1.9 installed on
Redhat 8 with ldap server installed on Ubuntu 16.04 )
,
but for test purpose have made our own simpel radius server.
--
Ray Bon
Programmer Analyst
Development Services, University Systems
2507218831 | CLE 019 | rb...@uvic.ca
I respectfully acknowledge that my place of work is located within the
ancestral, traditional and unceded territory of the Songhees
they username and password in
phissing attempts. But in general we want the LDAP to be the login validator.
We already use a supplier with radius to handle our VPN login with multifactor,
but for test purpose have made our own simpel radius server.
--
Ray Bon
Programmer Analyst
Development
how can i do to upgrade my cas server
Thank you
--
Ray Bon
Programmer Analyst
Development Services, University Systems
2507218831 | CLE 019 | r...@uvic.ca<mailto:r...@uvic.ca>
I respectfully acknowledge that my place of work is located within the
ancestral, traditional and unceded ter
also be checking for
HTTP_CLIENT_IP
HTTP_X_FORWARDED_FOR
HTTP_X_FORWARDED
HTTP_X_FORWARDED
HTTP_FORWARDED_FOR
HTTP_FORWARDED
REMOTE_ADDR
https://stackoverflow.com/questions/44085102/php-most-accurate-safe-way-to-get-real-user-ip-address-in-2017
--
Ray Bon
Programmer Analyst
Development Services, Un
State University
--
Ray Bon
Programmer Analyst
Development Services, University Systems
2507218831 | CLE 019 | r...@uvic.ca<mailto:r...@uvic.ca>
I respectfully acknowledge that my place of work is located within the
ancestral, traditional and unceded territory of the Songhees, Esq
configcontext1.PNG]
deployconfigconext.xml
deployconfigconexte.xml
[deploy configcontext2.PNG]
[error cas server.PNG]
--
Ray Bon
Programmer Analyst
Development Services, University Systems
2507218831 | CLE 019 | r...@uvic.ca<mailt
ties :
cas.logout.followServiceRedirects=true
cas.logout.redirectParameter=service
cas.logout.confirmLogout=true
cas.slo.disabled=true
cas.slo.asynchronous=true
--
Ray Bon
Programmer Analyst
Development Services, University Systems
2507218831 | CLE 019 | r...@uvic.ca<mailto:r...@uvic.ca&g
when
loading the page. I finally figured out that it was necessary to configure pam
case, but I have compilation errors on my kali linux 2019. Need help please!
--
Ray Bon
Programmer Analyst
Development Services, University Systems
2507218831 | CLE 019 | r...@uvic.ca<mailto:r...@uvic.ca&
to renew the expire time of TGT,Or there's no need to do that,
Thank you so much
--
Ray Bon
Programmer Analyst
Development Services, University Systems
2507218831 | CLE 019 | rb...@uvic.ca
I respectfully acknowledge that my place of work is located within the
ancestral, traditional and unceded
state of an attribute in
isServiceAccessAllowedForSso? Because I need It before the
doPrincipalAttributesAllowServiceAccess function.
Regards,
--
Ray Bon
Programmer Analyst
Development Services, University Systems
2507218831 | CLE 019 | r...@uvic.ca<mailto:r...@uvic.ca>
I respectfully acknowl
to call my endpoint?
--
Ray Bon
Programmer Analyst
Development Services, University Systems
2507218831 | CLE 019 | r...@uvic.ca<mailto:r...@uvic.ca>
I respectfully acknowledge that my place of work is located within the
ancestral, traditional and unceded territory of the Songhees, Esq
util.*
import java.net.URI
class GroovyRegisteredAccessStrategy extends
DefaultRegisteredServiceAccessStrategy {
final String accountStatus
@Override
boolean isServiceAccessAllowed() {
return true
}
@Override
boolean isServiceAccessAllowedForSso() {
See,
https://apereo.github.io/cas/6.0.x/ticketing/Configuring-Ticket-Expiration-Policy.html
Ray
On Mon, 2019-06-10 at 20:31 -0700, Uncle Popsicle wrote:
Hello all,
How to renew the expire time of TGT,Or there's no need to do that,
Thank you so much
--
Ray Bon
Programmer Analyst
Development
CAS server.
Since you don't have any other services currently working with this CAS server,
I would just ask you to confirm that your json files are in the location
specified in your cas.properties cas.serviceRegistry.json.location line.
--
Ray Bon
Programmer Analyst
Development Services, Universi
; rel="nofollow" target="_blank"
onmousedown="this.href='https://www.google.com/url?q\x3dhttps%3A%2F%2Fcastete.univ.com%2Fcas%2Fsta.<https://www.google.com/url?q%5Cx3dhttps%3A%2F%2Fcastete.univ.com%2Fcas%2Fsta.>.\x26sa\x3dD\x26sntz\x3d1\x26usg\x3dAFQjCNFMrmnnfS23DGhW7lrC8I
t directly (sorry
about the use of map in my previous example):
if ('Active' == attributes.get('udlAccountStatus'))
Also, from a programming perspective, entrySet
--
Ray Bon
Programmer Analyst
Development Services, University Systems
2507218831 | CLE 019 | r...@uvic.ca<mailto:r...@uvic.ca>
I res
a user must have to allow
access.
Since you are trying to modify the redirect URL (you have a third option), you
might have to modify the web flow.
In general, for your method you will have a check like this
if ('Active' == map.get('attribute')) {return true}
Ray
On Wed, 2019-05-22 at
e service
but
if the account attribute = blocked, i'll be redirect to
https://blocked-acc.html<https://blocked.acc.html>
or
if the account attribute = waiting, i'll be redirect to
https://waiting-acc/html<https://waiting.acc/html>
I'm new to groovy and I dont understand the issue
uilder.java:110)
> ~[pac4j-oidc-3.6.1.jar:?]
> ... 98 more
>
> Any suggestions would be helpful, because I'm having difficulty pulling
> off the right search to find the right set of documentation at MS.
>
> Thanks,
>
> Richard
>
--
Ray Bon
Programmer Analyst
D
ked, i'll be redirect to
https://blocked-acc.html<https://blocked.acc.html>
or
if the account attribute = waiting, i'll be redirect to
https://waiting-acc/html<https://waiting.acc/html>
I'm new to groovy and I dont understand the issue, May I have some help pls?
Regards,
--
Ray B
o groovy and I dont understand the issue, May I have some help pls?
Regards,
--
Ray Bon
Programmer Analyst
Development Services, University Systems
2507218831 | CLE 019 | rb...@uvic.ca
--
Ray Bon
Programmer Analyst
Development Services, University Systems
2507218831 | CLE 019 | rb...@uvic.ca
-
the account attribute = blocked, i'll be redirect to
https://blocked-acc.html<https://blocked.acc.html>
or
if the account attribute = waiting, i'll be redirect to
https://waiting-acc/html<https://waiting.acc/html>
I'm new to groovy and I dont understand the issue, May I have some he
Increase logging level to debug.
What log in handler do you have configured?
Ray
On Sun, 2019-05-26 at 19:25 -0700, 李雁敏 wrote:
When I am using custom login authentication, I can't log in. I check the log
and found:
2019-05-27 10:14:06,596 INFO
as:
org.apereo.cas
cas-server-core-authentication-api
${cas.version}
Attached related files for the same.
--
Ray Bon
Programmer Analyst
Development Services, University Systems
2507218831 | CLE 019 | rb...@uvic.ca
--
Ray Bon
Programmer Analyst
Development Services, University Systems
2507218831 | CLE
ount attribute = blocked, i'll be redirect to
https://blocked-acc.html<https://blocked.acc.html>
or
if the account attribute = waiting, i'll be redirect to
https://waiting-acc/html<https://waiting.acc/html>
I'm new to groovy and I dont understand the issue, May I have some help pl
-overlay-template/src/main/java/com/pramati/cas/config/CustomAuthHandlerConfig.java:[34,27]
package org.apereo.cas.util does not exist
Added Dependency as:
org.apereo.cas
cas-server-core-authentication-api
${cas.version}
Attached related files for the same.
--
Ray Bon
Programmer Analyst
ssue, May I have some help pls?
Regards,
--
Ray Bon
Programmer Analyst
Development Services, University Systems
2507218831 | CLE 019 | rb...@uvic.ca
--
Ray Bon
Programmer Analyst
Development Services, University Systems
2507218831 | CLE 019 | rb...@uvic.ca
--
Ray Bon
Programmer Analyst
Develo
i'll be redirect to
https://waiting-acc/html<https://waiting.acc/html>
I'm new to groovy and I dont understand the issue, May I have some help pls?
Regards,
--
Ray Bon
Programmer Analyst
Development Services, University Systems
2507218831 | CLE 019 | rb...@uvic.ca
--
Ray Bon
Program
hought about building a custom PersonDirectoryPrincipalResolver, overriding
the resolve() method to ensure the Credential "matched" the appropriate
AuthenticationHandler.
Is there another way to do this that doesn't require custom code?
Thanks,
-B
--
Ray Bon
Programmer Analyst
Development Services,
() method to ensure the Credential "matched" the appropriate
AuthenticationHandler.
Is there another way to do this that doesn't require custom code?
Thanks,
-B
--
Ray Bon
Programmer Analyst
Development Services, University Systems
2507218831 | CLE 019 | r...@uvic.ca
--
- Webs
/html<https://waiting.acc/html>
I'm new to groovy and I dont understand the issue, May I have some help pls?
Regards,
--
Ray Bon
Programmer Analyst
Development Services, University Systems
2507218831 | CLE 019 | r...@uvic.ca
--
- Website: https://apereo.github.io/cas
- Gitter Chatroom:
CAS
Community" group.
To unsubscribe from this group and stop receiving emails from it, send an email
to cas-user+u...@apereo.org.
To view this discussion on the web visit
https://groups.google.com/a/apereo.org/d/msgid/cas-user/f9789e0c-c236-4089-a30d-d1da6d95e3ce%40apereo.org<https://groups.go
cating against the phpCAS session cookie?
Thanks,
Austin
--
Ray Bon
Programmer Analyst
Development Services, University Systems
2507218831 | CLE 019 | r...@uvic.ca
--
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines: https://goo.gl/
ouldn't be quite so sharp.
Jan
--
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines: https://goo.gl/1VRrw7
- Contributions: https://goo.gl/mh7qDG
---
You received this message because you are subscribed to the Google Groups "CAS
Community"
give me some suggestions.
--
Ray Bon
Programmer Analyst
Development Services, University Systems
2507218831 | CLE 019 | r...@uvic.ca
--
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines: https://goo.gl/1VRrw7
- Contributions: https://goo.gl
REST API portion of the official documentation is really lacking in my opinion.
Is there a better solution to this problem?
--
Ray Bon
Programmer Analyst
Development Services, University Systems
2507218831 | CLE 019 | rb...@uvic.ca
--
Ray Bon
Programmer Analyst
Development Services, University Sy
of the official documentation is really lacking in my opinion.
Is there a better solution to this problem?
--
Ray Bon
Programmer Analyst
Development Services, University Systems
2507218831 | CLE 019 | rb...@uvic.ca
--
Ray Bon
Programmer Analyst
Development Services, University Systems
2507218831 | CLE
apereo/cas
- List Guidelines: https://goo.gl/1VRrw7
- Contributions: https://goo.gl/mh7qDG
---
You received this message because you are subscribed to the Google Groups "CAS
Community" group.
To unsubscribe from this group and stop receiving emails from it, send an email
to cas-...@apereo.o
together basically on my own as the
REST API portion of the official documentation is really lacking in my opinion.
Is there a better solution to this problem?
--
Ray Bon
Programmer Analyst
Development Services, University Systems
2507218831 | CLE 019 | r...@uvic.ca
--
- Website: https
Protocol.html> the
other day and I thought I could build a completely new single page application
on these RESTful APIs, but I will have to implement CAS Protocol on this SPA
myself in that way, which is ugly and insecure.
I wonder if there is a elegant way to customize login view? Many thanks to y
for AD connections?
The odd spacing and jumbled lines ('cas.authn.ldap [0] = false .useSsl' should
be 'cas.authn.ldap[0].useSsl = false') in your posted config may indicate some
hidden characters.
Ray
--
Ray Bon
Programmer Analyst
Development Services, University Systems
2507218831 | CLE 019 | r
52,639 ERROR
[org.apereo.cas.authentication.PolicyBasedAuthenticationManager] -
mailto:r...@uvic.ca>> a
écrit :
Alain,
The error is associated with AUP. Comment out the associated lines.
Ray
--
Ray Bon
Programmer Analyst
Development Services, University Systems
2507218831 | CLE 019 | r...@uvic.ca
--
- Website: https://apereo.gith
compile "org.apereo.cas:cas-server-support-ldap:${casServerVersion}"
compile "com.unboundid:unboundid-ldapsdk:4.0.9"
compile
"org.apereo.cas:cas-server-support-aup-webflow:${project.'cas.version'}"
compile
"org.apereo.cas:cas-server-support-aup-ldap:
April 1st
2019. With that snapshot version, the error does not occur.
So, a change made between April 1st (date of my working snapshot) and April
19th (release date) must somehow cause the malfunction.
Any clues on how to fix this would be greatly appreciated.
Regards,
Martin
--
Ray Bon
Pr
) - Identity
and Access Management
2025 Yukon Drive, Suite 103
Fairbanks, Alaska 99775
Tel: 907-450-8320
Fax: 907-450-8381
<mailto:linda.t...@alaska.edu>
linda.t...@alaska.edu
|
<http://www.alaska.edu/oit/>
www.alaska.edu/oit/
--
Ray Bon
Programmer Analyst
Development Ser
ionable tasks: 1 executed, 1 up-to-date
Where can this come from ?
Alain
- Mail original -
De: "Ray Bon" <
<mailto:r...@uvic.ca>
r...@uvic.ca
>
À:
<mailto:cas-user@apereo.org>
cas-user@apereo.org
Envoyé: Vendredi 10 Mai 2019 18:24:25
Objet :
rMessage='Trust verification failed for 192.168.0.54:389 '$
at
com.unboundid.ldap.sdk.LDAPConnection.connect(LDAPConnection.java:871)
~[unboundid-ldapsdk-4.0.10.jar!/:4.0.10]
I do not understand because with apache studio I connect well.
Alain
Le jeu. 9 mai 2019 à 19:04, Ray Bon <
<mailto:r...@uvic.ca>
r...@uvic.ca
] .bindCredential = PASSWORD
thank you so much
Le mer. 8 mai 2019 à 20:33, Ray Bon <
<mailto:r...@uvic.ca>
r...@uvic.ca
> a écrit :
Alain,
The '#' marks the line as a comment. Use it to turn off config items when
trying different things.
Ray
On Wed, 2019-05-08 at 19:38
a # or not?
Is that good?
thank you in advance
De: "Ray Bon"
À: cas-user@apereo.org
Envoyé: Mercredi 8 Mai 2019 19:29:00
Objet : Re: [cas-user] Problem install cas 6.0
Alain,
Only add the configuration items that you need to change. Everything else wil
De: "Ray Bon"
À: cas-user@apereo.org
Envoyé: Mardi 7 Mai 2019 17:18:38
Objet : Re: [cas-user] Problem install cas 6.0
Alain,
Take a look at,
https://dacurry-tns.github.io/deploying-apereo-cas/introduction_overview.html
(which is for CAS 5), to get an idea of
ereo/cas-overlay-template
/ Cd / Case-overlay-template
./gradlew clean
Compile the project
./gradlew clean copyCasConfiguration build
./gradlew createKeystore
./gradlew run
--
Ray Bon
Programmer Analyst
Development Services, University Systems
2507218831 | CLE 019 | r...@uvic.ca
--
support still
required for CAS to support SSO between them?
Thx!
Yan
--
Ray Bon
Programmer Analyst
Development Services, University Systems
2507218831 | CLE 019 | r...@uvic.ca
--
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines: https
ckages were needed.
Doug
From: cas-user@apereo.org [mailto:cas-user@apereo.org] On Behalf Of Ray Bon
Sent: Friday, May 3, 2019 2:14 AM
To: cas-user@apereo.org
Subject: Re: [cas-user] Issue with LPPE and memcached ticket registry
val is part of lombok. Try adding this to build.gradle
compileOnly
t declared in method asList(T...)
Note: Some messages have been simplified; recompile with -Xdiags:verbose to get
full output
24 errors
Doug
From: cas-user@apereo.org [mailto:cas-user@apereo.org] On Behalf Of Ray Bon
Sent: Friday, May 3, 2019 1:08 AM
To: cas-user@apereo.org
Subject: Re: [cas-user]
ur change.
Julien
Le 01/05/2019 à 21:26, Ray Bon a écrit :
Doug,
I have not used docker image but suspect it operate the same way as a stand
alone deploy.
You create your package/class(es) in src/main/java (in root of project
directory). It will get built and placed in the war.
https://ap
dataGen=true -DskipGradleLint=true), like that your cas
build from the cas-overlay-template will be able to use your change.
Julien
Le 01/05/2019 à 21:26, Ray Bon a écrit :
Doug,
I have not used docker image but suspect it operate the same way as a stand
alone deploy.
You create your package/class(es) in s
a
replication via hazelcast?
Thanks for any input.
Andreas
--
Ray Bon
Programmer Analyst
Development Services, University Systems
2507218831 | CLE 019 | r...@uvic.ca
--
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines: https://goo.gl
isit
https://groups.google.com/a/apereo.org/d/msgid/cas-user/90f4c6dd-6b79-719e-d2d2-2dcd5a3a3c31%40recia.fr<https://groups.google.com/a/apereo.org/d/msgid/cas-user/90f4c6dd-6b79-719e-d2d2-2dcd5a3a3c31%40recia.fr?utm_medium=email_source=footer>.
--
Ray Bon
Programmer Analyst
Development S
[org.apereo.cas.support.events.listener.DefaultCasEventListener] - < [0m>
2019-04-17 16:15:06,723 INFO
[org.apereo.cas.support.events.listener.DefaultCasEventListener] -
Do I have miss something ?
Thanks for your help !
Jeremy
--
Ray Bon
Programmer Analyst
Development Servic
Nam,
Start here,
https://apereo.github.io/cas/5.3.x/installation/Configuring-Authentication-Components.html
Ray
On Wed, 2019-04-17 at 19:48 -0700, nam nguyễn wrote:
Everyone let me ask.
How to add a new module to authenticate to cas server 5.3?
--
- Website: https://apereo.github.io/cas
-
a service policy from the service
management to do that ? Or are you seing a better way ?
Thanks,
--
Julien Gribonvald
--
Ray Bon
Programmer Analyst
Development Services, University Systems
2507218831 | CLE 019 | r...@uvic.ca
--
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https
Trenton,
If you are using tomcat that you downloaded, it comes with a number of
applications (docs, manager, etc.). You could delete those apps.
Ray
On Mon, 2019-04-15 at 17:25 +, Trenton Adams wrote:
So, with the features we're using, CAS 5.2.x, tomcat startup takes 4 minutes on
a single
mark my CustomLDAPAuthenticationHandler as
default LDAPAuthenticationHandler?
Kindly advise.
--
Ray Bon
Programmer Analyst
Development Services, University Systems
2507218831 | CLE 019 | r...@uvic.ca
--
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
Ken,
I meant invalidate the app session, not the login session. If the CAS session
is still valid, user would not see login screen.
Session invalidation is more of a concern if your app stores data in the
session.
Ray
On Thu, 2019-04-11 at 10:56 -0700, Ken Zilber wrote:
Thank you for the
Ken,
To clarify, the TGT is not sent to the client. TGC is all that is needed.
If all your apps are on same domain, does CORS apply?
You could invalidate your app session when JWT expires. App would then follow
normal authentication behaviour and redirect to CAS. This of course would not
work
dministrators to release attributes for each service. But when I access
https://cas.example.com/cas-management and try to add services, the "mail",
"eppn", "displayName", "givenName", "uid" attributes not show in the dropdown
option ( Attribute R
Fernando,
This probably means that you have to add a reference in gradle build file.
Is there more output detail you can provide.
Ray
On Wed, 2019-04-10 at 08:17 -0700, Fernando Gómez wrote:
What I can do?
I am updating the cas from version 4.0 to 5.3, and I get that error when
compiling
On Wed, 2019-04-10 at 07:34 +0700, Fahmi L. Ramdhani wrote:
Please tell me how to unprotect? In cas.properties i have to set
endpoints.status.discovery.enabled = true
..sensitive = false
Sorry for my questions. Thank you Ray.
Sent from my iPhone
On 10 Apr 2019, at 07.05, Ray Bon mailto:r
Fahmi,
It looks like /cas/status/discovery is protected by cas and it redirects to
cas/login (status code 302).
Should the discovery page be protected?
Ray
On Tue, 2019-04-09 at 16:43 -0700, Fahmi L. Ramdhani wrote:
I tried accessing the result curl like this:
curl -v
Raphael,
Tomcat logs are in TOMCAT_HOME/logs.
Ray
On Tue, 2019-04-09 at 02:11 -0700, Raphaël CHANE wrote:
hello,
I am trying to get CAS to work with AD, but i've got this error on tomcat logs
"
/var/log/cas
debug
I did some research and saw
Baso,
Add some of your own debug statements to CASphp where it processes the log out
request.
Ray
On Sat, 2019-04-06 at 10:17 -0700, Baso Dupond wrote:
Hi,
The Single Log Out is not working on my basic implementation
I obtain a "Not a logout request" in the Cas-client Log
0A53 .START
Anuja,
What you are seeing are duplicate log entries (time stamps match).
Check 'additivity' in log4j2.xml to make sure only one message is logged.
Ray
On Fri, 2019-04-05 at 13:41 -0700, Anuja Paradkar wrote:
Log file shows it creates and validates same ticket twice, no doubt during
second
Andrey,
It looks like your jdbc handler is not recognized. I have this in my log
(5.2.7):
DEBUG [aper.cas.auth.RegisteredServiceAuthenticationHandlerResolver] -
Check your config file location and where CAS thinks it should be.
Ray
On Fri, 2019-04-05 at 11:30 -0700, Andrey Seledkov wrote:
Baso,
AUTHENTICATION_EVENT_TRIGGERED happens any time cas/login is accessed.
What happens when you try to log in?
Ray
On Fri, 2019-04-05 at 09:42 -0700, Baso Dupond wrote:
Hi,
I have implemented CAS 6.0.0 with succes so far.
I have difficulties with 'Throttling Authentication Attempts'
After
Andrey,
You have showSql=true, check the sql statement to be sure it is correct, and
run it against your database to be sure it returns the data that you want.
The stack trace is part of DEBUG output.
Ray
On Fri, 2019-04-05 at 03:56 -0700, Andrey Seledkov wrote:
Hello team.
I setup cas
CAS for authN.
The problem, I run into, is that when App /logout endpoint gets called, it does
not know where App Session is, the load balancer may direct the app /logout on
the server not having the application session.
Am I missing something?
Thx!
Yan
--
Ray Bon
Programmer analyst
!
Yan
--
Ray Bon
Programmer analyst
Development Services, University Systems
2507218831 | CLE 019 | r...@uvic.ca
--
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines: https://goo.gl/1VRrw7
- Contributions: https://goo.gl/mh7qDG
---
You
could not be reached or authenticated".
Kindly assist
--
Ray Bon
Programmer analyst
Development Services, University Systems
2507218831 | CLE 019 | r...@uvic.ca
--
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines: https://goo.gl/1VRrw7
- Con
cas.ticket.registry.memcached.crypto.alg=AES
cas.ticket.registry.memcached.crypto.enabled=true
I want to know how memcached is actually storing the tickets so that I can
check for users if there is a ticket already present for them or not
--
Ray Bon
Programmer analyst
Development Services
r/CAGST5P8N71n7HVrBAK1pOUm23sBcO8YLSkaKORhWZEXxa9qMuQ%40mail.gmail.com?utm_medium=email_source=footer>.
--
Ray Bon
Programmer analyst
Development Services, University Systems
2507218831 | CLE 019 | r...@uvic.ca
--
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitte
https://sso.example.com<http://sso.example.com>
Thank you
Fahmi
--
Ray Bon
Programmer analyst
Development Services, University Systems
2507218831 | CLE 019 | r...@uvic.ca
--
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines: https://g
abled=false, which it is not.
I see in logs that for ExampleA SERVICE_TICKET_VALIDATE_SUCCESS happens.
And in ExampleB, I do not see that.
Does ticket validation need to be done?
Any advice?
--
Ray Bon
Programmer analyst
Development Services, University Systems
2507218831 | CLE 019 | rb...@uvic.c
is not.
I see in logs that for ExampleA SERVICE_TICKET_VALIDATE_SUCCESS happens.
And in ExampleB, I do not see that.
Does ticket validation need to be done?
Any advice?
--
Ray Bon
Programmer analyst
Development Services, University Systems
2507218831 | CLE 019 | r...@uvic.ca
--
- Website: http
901 - 1000 of 1288 matches
Mail list logo