> This is awkward .. but with these two properties it works..
>
>
>
The naming might be a little confusing, but they are designed to be
used together in some cases. Certain software issues CA certificates
with a value of 2^32-1 for the PathLength basic constraint to indicate
unspecified instead
This is awkward .. but with these two properties it works..
Francisco Estanqueiro wrote:
Oh okay.. they are both sending the same the certificate but firefox
doenst have the root. Well, I'll put two x509 authenticators to fix this
then..
But, the problem in IE persists since the pattern
Oh okay.. they are both sending the same the certificate but firefox
doenst have the root. Well, I'll put two x509 authenticators to fix this
then..
But, the problem in IE persists since the pattern match is true and the
authentication fails..
class="org.jasig.cas.adaptors.x509.authenticatio
Hi,
I am running mod_auth_cas 1.0.8. But the php script is still executing
even though I have added .htaccess file defining directive to
authenticate using CAS and authorize using ldap.
Abhi.
Matthew J. Smith wrote:
Which cas module are you using with Apache? Is it mod_auth_cas or
mod_cas?
Jasig is happy to announce the availability of an online participation
option for the following two seminars, which are being held at our annual
conference this weekend. The online option will be a combination of
presentation slides and two-way audio. Remote attendees will be able to
take part in
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
It's taken me quite a while longer than I wanted to get back to this. Is
there really any reason this cannot work with FastBind?
I can try and switch to that, but in the long run FastBind will work
much better in my environment.
I am currently using
> how can I
> just get CAS LDAP + Spring Security to keep all of the defined
> groups/associations in the directory.acme.com and propagate them to
> the client
Using the CAS attribute release feature,
http://www.ja-sig.org/wiki/display/CASUM/Attributes, you can release
arbitrary user attributes, e
If the log excerpts you have provided are complete, the certificate
chain presented to the server in both cases is different.
2010-03-01 19:56:39,120 DEBUG
[org.jasig.cas.adaptors.x509.authentication.handler.support.X509CredentialsAuthenticationHandler]
- <--examining cert[120005025] CN=ECRaizEsta
Ok, here are the debug logs for exactly the same certificate in both
browsers (I attached the cert path).
trustedIssuerDnPattern="CN=ECRaizEstado, O=SCEE, C=PT"
*With Firefox:*
2010-03-01 19:58:01,811 DEBUG
[org.jasig.cas.adaptors.x509.authentication.handler.support.X509CredentialsAuthenticati
Hi Marvin, all--
I followed your suggestions but am getting the same end result.
However, I did figure out the root problem: it was on the client side.
Here is the Spring Security configuration for the client, how can I
just get CAS LDAP + Spring Security to keep all of the defined
groups/associat
>
I don't believe you need the enclosing braces above.
The best way to diagnose errors is to review the cas.log file on the
server. It's written to the current working directory of the Java
processing running your container by default. Please share the
relevant parts of that file if c
Greetings,
I'm a very recent (near-messianic) convert to JA-SIG's CAS
implementation, thank you very much for your work!
I am converting an existing application from using Spring Security
(3.0.x) directly doing LDAP authentication to a CAS-based (3.3.5) LDAP
authentication system. My existing app
Hi,
there are several ways to achieve this. In our system we hijack the default
redirect-url by using a flowScope-variable (which is set if some condition
is true):
Hope, it helps.
Regards,
Wadim
--
View this message in context:
http://n4.nabble.com/how-to-redirect-URL-automati
Also just to add, my controlservlet dosen't seem to execute either. Even if
i add control servlet at the end by hand, I am not sure if this is because
the key gets appended, but I think this is related to the callback not
working as I expect?
On Mon, Mar 1, 2010 at 1:02 PM, Ravi wrote:
> Hi All
Hi All,
I have got CAS up and running, it performs authentication as expected. But I
am pulling my hair out trying to fix one final issue.
I fire up URL of my webapp 'k-authentify' as follows:
https://localhost:8443/k-authentify/controlservlet?cmd=test
Since controlservlet is protected resour
Hi, I think that urlService do what you want.
If you try to enter http://www.foo.com, your app redirects you to CAS and
the url should be something like
http://www.casserver.com/login?service=http://www.foo.com
The parameter service is used to redirect to that url after the user logs
in. All user
Hi,guys:
I have several legacy systems with different login information and they are not
in the same domain. My CAS server is a stand-alone server and authenticate
login information with jdbc-support
(SearchModeSearchDatabaseAuthenticationHandler). I want to let the CAS's login
page as the fir
17 matches
Mail list logo