Where you able to solve this issue? I'm having the same problem. The state
parameter is on the request url but not in the session.
--
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines: https://goo.gl/1VRrw7
- Contributions:
Where you able to solve this issue? I'm having the same problem. The state
parameter is on the request url but not in the session.
Am Montag, 3. Juni 2019 22:45:15 UTC+2 schrieb Łukasz Woźniak:
>
> When user open CAS state parameter is set on the session, but when user
> comeback from
When user open CAS state parameter is set on the session, but when user
comeback from Azure/OpenID state Parameter is exist on request but on the
session is null.
W dniu poniedziałek, 3 czerwca 2019 22:39:23 UTC+2 użytkownik Łukasz
Woźniak napisał:
>
> Problem is on connection Cas <>
Problem is on connection Cas <> Azure/OpenId. State Parameter for CSRF is
null sometime when request come from Azure to Cas. I check and state is set
on the Session.
W dniu poniedziałek, 3 czerwca 2019 18:06:00 UTC+2 użytkownik rbon napisał:
>
> Łukasz, This sounds like the client application
Łukasz, This sounds like the client application is sending the user to CAS with
one URL in the service parameter and a different URL when validating the
service ticket. There should be log messages describing why the 'State
paramerter ...' is output. You may have to turn up the log level. Ray
We use 5.2.9 version of CAS. And We have problem every day when user try to
authenticate. They get "Unautorized access" and in log we get CSRF error:
State parameter is different from the one sent in authentication request.
Session expired or possible threat of cross-site request forgery
Need to add CAS 5.3.9. I have Google and Twitter working through
delegated auth. So I have that much working.
On 3/29/19 3:57 PM, Richard Frovarp wrote:
> Does anyone have an example config or documentation on how to delegate
> to Azure AD? This is operating at the very edge of my understanding,
Does anyone have an example config or documentation on how to delegate
to Azure AD? This is operating at the very edge of my understanding, and
I'm having some difficulty. Not entirely sure what configs are required,
or exactly what to set in Azure.
Right now I have: