As far as I know it ran with 2 GB of memory. We had two CAS servers on two
Sun T5120s and during our peak period they each ran < 10% CPU. My memory is
a bit fuzzy so searching the archives might turn up more details.
Cheers,
Scott
On Tue, May 4, 2010 at 1:23 PM, Cary, Kim wrote:
> This is ex
I realized that with all the machinations I tried, I ended up with the
argumentExtractorsConfiguration.xml in WEB-INF. I ended up just trying 3.3.5
which worked fine.
-James
On May 4, 2010, at 2:09 PM, Patrick Berry wrote:
> http://www.ja-sig.org/issues/browse/CAS-868
>
> I've using the fix
3.3.5 works fine - I think the issue is in the Spring-webflow changes in 3.4
-Eric
On Tue, May 4, 2010 at 5:08 PM, Gutholm, James wrote:
>
> Thanks, what's the most current version known to work with google apps?
>
> -James
>
> On May 4, 2010, at 2:06 PM, scott.battag...@gmail.com wrote:
>
> > T
Guimaraes, Patricia (NIH/NLM) [C] escribió:
> Did you mean this instead:
Indeed. Sorry for the typos.
> That is, if I go to http://app2/, shouldn’t I be redirected to
> http://cas/login?service=http://app2/ and after authentication, be
> redirected to* *http://app2/?ticket=ST instead of
> http://
http://www.ja-sig.org/issues/browse/CAS-868
I've using the fix listed in the comments in production and things are just
fine.
Pat
On Tue, May 4, 2010 at 2:06 PM, wrote:
> There's an open issue in jira targeted at 3.5 with a fix.
>
>
> Sent from my Verizon Wireless BlackBerry
>
> -Original
Thanks, what's the most current version known to work with google apps?
-James
On May 4, 2010, at 2:06 PM, scott.battag...@gmail.com wrote:
> There's an open issue in jira targeted at 3.5 with a fix.
>
>
> Sent from my Verizon Wireless BlackBerry
>
> -Original Message-
> From: "Guth
There's an open issue in jira targeted at 3.5 with a fix.
Sent from my Verizon Wireless BlackBerry
-Original Message-
From: "Gutholm, James"
Date: Tue, 04 May 2010 13:57:44
To:
Subject: [cas-user] Google Apps not redirecting from CAS back to Google
We have an existing SSO environme
Missed pasting the headers, here they are.
https://host/path//login?SAMLRequest=&RelayState=https%3A%2F%2Fwww.google.com%2Fa%2Fevergreen.edu%2FServiceLogin%3Fservice%3Dmail%26passive%3Dtrue%26rm%3Dfalse%26continue%3Dhttp%253A%252F%252Fmail.google.com%252Fa%252Fevergreen.edu%252F%26bsv%3D*
We have an existing SSO environment using CAS and we are now trying to enable
Google Apps for Edu (GAE). I've created a new CAS war file and deployed it as a
test.
Authentication is working fine.
For normal applications, that use "https://hostname/path/login?service...";, it
redirects back to
Jose,
Thanks a lot for your reply! If you don’t mind, I'd like to clarify something.
You wrote:
As I understand it, when you login using the login form (authentication
via web browser) you get back a TGT in the cookie.
But if you're being redirected from a service, and you're passing t
> When we do the revamp for 3.5, we can include the Hibernate indexes so that
> the DDL is generated automatically. That might help also.
I think it'd help greatly. It's tricky at present because the DDL it
generates is 90% correct; but the missing 10% will kill you in
production.
M
--
You ar
When we do the revamp for 3.5, we can include the Hibernate indexes so that
the DDL is generated automatically. That might help also.
On Tue, May 4, 2010 at 3:49 PM, Marvin Addison wrote:
> > 2. We were having some serious database side issues and proformance
> > problems *until* we indexed the
> 2. We were having some serious database side issues and proformance
> problems *until* we indexed the foreign keys in the database on (I
> believe) the ticket registry table, and all the problems disappeared.
Man, we _really_ need to document the need for this on the wiki. It's
sprinkled all ov
Hello,
Someone in this list could tell me how can I authenticate my service to get
something under CAS??
Example: I have a service A that is under CAS (just logged users can access)
and I have a service B that want access service A. When I try get service A
from service B, it returns the CAS Login
Newer versions of the cleaners include a locking mechanism that should
prevent any issues with running on multiple machines. Just make sure to
configure it correctly :-) I think its only as of 3.4.2 though.
On Tue, May 4, 2010 at 3:09 PM, Jeff Chapin wrote:
> -BEGIN PGP SIGNED MESSAGE
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Sandy,
I am about to go live with my campus' implimentation, and our setup is
much the same as yours is described.
1. We use the webflow method. It's what worked for us.
2. We were having some serious database side issues and proformance
problems *u
This usually happens if there are certificate errors on the client end
(though its not the only reason)
On Tue, May 4, 2010 at 3:05 PM, Jeff Chapin wrote:
> -BEGIN PGP SIGNED MESSAGE-
> Hash: SHA1
>
> I am working with a developer of a client application, and we are having
> trouble get
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
I am working with a developer of a client application, and we are having
trouble getting his application CASified.
Currently when you try to log in, IE and Firefox eventually time out in
with an 'endless redirect' type error.
I am seeing the followin
Hi,
The incubating client is currently in production at Princeton, though
there are a few additional tasks that we'd like to wrap up before
reaching v1.0. I've been pulled in another direction for the past few
weeks but plan on picking this up again in a few weeks.
- CasClientConfiguration (web.
> The client is in active development. Though it lacks an official release (I
> believe an M1 was actually tagged, but FishEye is taking too long for me to
> confirm this), I think its being actively used in production at least at
> Princeton (if not VT also, though Marvin can speak for that).
An
On Tue, May 4, 2010 at 1:31 PM, Hugh Eaves wrote:
> I see that the existing .NET Client seems to have been retired, and is
> being replaced with an incubating client.
>
Yes, we're now incubating a fully supported .NET client. The older one,
which was in place before we had the notion of
officia
I see that the existing .NET Client seems to have been retired, and is being
replaced with an incubating client.
What is the status of this client? Is it production ready, and if so, where is
the doc?
If the new one is not production ready, why was the documentation and download
for the old on
This is exactly the application we're concerned about... registration. Our
registration portal will be CAS-ified by July 1. How much tomcat memory for
that 1024 thread instance?
On May 3, 2010, at 8:01 PM, Scott Battaglia wrote:
> Rutgers had increased their number of threads to a relatively hi
Guimaraes, Patricia (NIH/NLM) [C] escribió:
> Also, as I understand it, authentication via the web browser works by
> having the application server redirect the client to the CAS server to
> authenticate the user _for __the__ specifi__ed__ service_. The CAS
> server then authenticates the user and
Dean,
Just following up on this -- wanted to thank you for your help and guidance.
I've finally gotten it working with some help from our AD admins; the
problem, as you suspected, was with the AD account, not the CAS
configuration. In case it helps anyone else, we had previously associated
the S
Hi,
I'm working on a project to provide CAS on our campus. We're hoping to
cluster two instances of CAS 3.3.5 on Tomcat 6 behind a load balancer.
In reading through the list archives and the wiki pages, it seems there
are a number of different ways to cluster CAS. I'm hoping to get some
adv
If I remember correctly, I had multiple versions of the same jar
packages (spring, etc..) after I compiled with maven.
Francisco
n99 wrote:
Hello
I was wondering how you cured the
org.springframework.web.servlet.tags.ThemeTag NullPointerException
java.util.regex.Matcher.getTextLength error as
Are you using HTTPS to log out?
On Tue, May 4, 2010 at 11:52 AM, Jeremy Bennett wrote:
> Hi there,
>
> We are trying to log out of CAS but when we hit the /cas/logoutl link, it
> seems the token is still there. Anyone else had troubles with that?
>
> Thanks,
> Jeremy
>
>
> *Jeremy R. Bennett
Hi there,
We are trying to log out of CAS but when we hit the /cas/logoutl link, it seems
the token is still there. Anyone else had troubles with that?
Thanks,
Jeremy
Jeremy R. Bennett
Client Systems Developer/Analyst
Narragansett Bay Insurance Company
25 Maple Street
Pawtucket, RI 02860
(401)
Hi,
We are re-engineering an existing application that requires two different
interfaces: a web application (accessed via a web browser) and web services.
Both interfaces share the same middleware. In the re-engineered code, we
added security to the web application by using Spring Security i
Hello
I was wondering how you cured the
org.springframework.web.servlet.tags.ThemeTag NullPointerException
java.util.regex.Matcher.getTextLength error as I've got this error after
upgrading to 3.4.2 as has this person
http://jasig.275507.n4.nabble.com/cas-server-3-4-2-and-nagios-plugin-Login-page
Hello
I was wondering how you cured the
org.springframework.web.servlet.tags.ThemeTag NullPointerException
java.util.regex.Matcher.getTextLength error as I've got this error after
upgrading to 3.4.2 as has this person
http://jasig.275507.n4.nabble.com/cas-server-3-4-2-and-nagios-plugin-Login-page
Scott and Jose,
Thank you both for your replies! Scott, I completely agree with you that
usernames and passwords should never be passed via GET. The plan was to POST
them all along. I just wanted to temporarily test my CAS deployment via a web
browser, since I wasn't getting the behavior I e
Hello,
i'm new here, so please forgive me if i make mistakes.
I have set up Apache2 + Tomcat6 via mod_jk. I installed CAS with Ldap and
testet the setup with Tikiwiki. This is all working fine.
Now i wanted to switch CAS from Ldap to Spnego. But im really stuck.
I followed the wiki (http://www.j
Thanks. It worked!
scott.battag...@gmail.com wrote:
> Its need to be a 4.x one.
>
> Sent from my Verizon Wireless BlackBerry
>
>
> *From: * Gabi Teris
> *Date: *Tue, 04 May 2010 15:25:41 +0300
> *To: *
> *Subject: *Re: [cas-
No they are available during validation, not during the login process. :-)
[though for Google Apps support that line is blurred]
On Tue, May 4, 2010 at 10:16 AM, Andrew Tillinghast
wrote:
>
> So long and short of it, those LDAP attributes aren't available during the
> validation.
>
> -Andrew
>
Whew, I was really confused for a little while :-)
On Tue, May 4, 2010 at 10:15 AM, Jeff Chapin wrote:
> -BEGIN PGP SIGNED MESSAGE-
> Hash: SHA1
>
> I'm sorry, please ignore this. It was sent to the wrong address.
>
>
> Jeff Chapin wrote:
> > Any update on the AuthCAS perl module and in
So long and short of it, those LDAP attributes aren't available during the
validation.
-Andrew
On May 4, 2010, at 10:08 AM, Scott Battaglia wrote:
> Any Spring bean should be accessible from the web flow (at least in Web Flow
> 2).
>
> The principal itself is not available from the web flow
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
I'm sorry, please ignore this. It was sent to the wrong address.
Jeff Chapin wrote:
> Any update on the AuthCAS perl module and installation?
>
> Jeff
>
- --
Jeff Chapin,
Assistant Systems/Applications Administrator
ITS-IS, University of Northern
Any Spring bean should be accessible from the web flow (at least in Web Flow
2).
The principal itself is not available from the web flow since its only
available on validation.
On Tue, May 4, 2010 at 9:12 AM, Andrew Tillinghast wrote:
>
> So is there a bean that can be accessed in WebFlow that
All,
The next community call will be May 12 @ 12pm Eastern. We've got our usual
standard list of items to go over, but part of the call is also open to
additional topics. If you've got additional topics, please shoot me an
email and I'll add them in when I create the agenda page.
Cheers,
Scott
We use the default 150 per node on two nodes serving about 35K service
tickets/day. I don't believe we've had any thread shortage issues.
M
--
You are currently subscribed to cas-user@lists.jasig.org as:
arch...@mail-archive.com
To unsubscribe, change settings or access archives, see
http://w
> Has anyone used CAS in multiple server environments?
I think lots of folks are doing HA CAS. We are.
> What keeps the tokens unique?
The server.name parameter in the cas.properties file. That string is
appended to the end of the service ticket by default to further
guarantee globally unique
Hi CAS users list,
Has anyone used CAS in multiple server environments? Like where you have more
than one CAS server? What keeps the tokens unique? And on the other hand, is
there any good articles on mutiple CA servers using the same token (high
availability).
Thanks in advance,
Jeremy
Jeremy
So is there a bean that can be accessed in WebFlow that will return the
principal with attributes?
-Andrew
On May 3, 2010, at 11:26 PM, Scott Battaglia wrote:
> Attributes about the principal are ONLY stored with the principal itself.
> The attributes you are referring to to are the values
Wrong list ;)
On 5/4/2010 7:58 AM, Jeff Chapin wrote:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Any update on the AuthCAS perl module and installation?
Jeff
- --
Jeff Chapin,
Assistant Systems/Applications Administrator
ITS-IS, University of Northern Iowa
Phone: 319-273-3162 Email: jeff.c
Its actually a much simpler configuration:
https://fisheye.springsource.org/browse/spring-security/samples/cas/client/src/main/webapp/WEB-INF/applicationContext-security.xml?r=HEAD
That should get you started. (You'll also need some config in the web.xml)
Cheers,
Scott
On Tue, May 4, 2010 at 7
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Any update on the AuthCAS perl module and installation?
Jeff
- --
Jeff Chapin,
Assistant Systems/Applications Administrator
ITS-IS, University of Northern Iowa
Phone: 319-273-3162 Email: jeff.cha...@uni.edu
-BEGIN PGP SIGNATURE-
Version: GnuP
Its need to be a 4.x one.
Sent from my Verizon Wireless BlackBerry
-Original Message-
From: Gabi Teris
Date: Tue, 04 May 2010 15:25:41
To:
Subject: Re: [cas-user] Error on starting cas-server
yes, it is: hibernate-validator-3.1.0.GA.jar
scott.battag...@gmail.com wrote:
> It would p
I have the same version of CAS configured with JDBC. I had to switch the
validator to release 4.1.0, because I had problems using 3.1.0.
There is already a couple of comments about this in a Scott's
discussion.
HTH
Stefano
From: Gabi Teris [mailto:ga...@axz.ro]
Sent: Tuesday, 04
yes, it is: hibernate-validator-3.1.0.GA.jar
scott.battag...@gmail.com wrote:
> It would probably be named hibernate-validator-xxx.jar where xxx is a
> version.
>
> Sent from my Verizon Wireless BlackBerry
>
>
> *From: * Gab
It would probably be named hibernate-validator-xxx.jar where xxx is a version.
Sent from my Verizon Wireless BlackBerry
-Original Message-
From: Gabi Teris
Date: Tue, 04 May 2010 15:20:07
To:
Subject: Re: [cas-user] Error on starting cas-server
sorry, which jar are we talking about?
sorry, which jar are we talking about? I am quite new to cas...
scott.battag...@gmail.com wrote:
> Can you confirm if the jar is there though?
>
> Sent from my Verizon Wireless BlackBerry
>
>
> *From: * Gabi Teris
> *Date: *
Can you confirm if the jar is there though?
Sent from my Verizon Wireless BlackBerry
-Original Message-
From: Gabi Teris
Date: Tue, 04 May 2010 14:52:28
To:
Subject: Re: [cas-user] Error on starting cas-server
I saw your previous mail... but I can't think why that happens. I
changed
I figured so much. Can you guestamate how much work it is to upgrade to
Spring Security 3.0.x? Is this almost a dropin replacement?
Arjan Seesing
On Mon, May 3, 2010 at 19:04, Scott Battaglia-2 [via Jasig] <
ml-node+2124259-1945875425-137...@n4.nabble.com
> wrote:
> I don't know how much help
I saw your previous mail... but I can't think why that happens. I
changed only the authentication handler, to the one from jdbc support.
scott.battag...@gmail.com wrote:
> Did you see my other message? Looks like hibernate validator might be
> missing.
>
> -S
>
>
> Sent from my Verizon Wireless
Did you see my other message? Looks like hibernate validator might be missing.
-S
Sent from my Verizon Wireless BlackBerry
-Original Message-
From: Gabi Teris
Date: Tue, 04 May 2010 14:21:29
To:
Subject: Re: [cas-user] Error on starting cas-server
I am using the 3.4.2 version of th
I am using the 3.4.2 version of the cas-server webapp, modified to use
jdbc authentication.
scott.battag...@gmail.com wrote:
Which version of cas? Are you using an old config file?
--Original Message--
From: Gabi Teris
To: CAS Users List
ReplyTo: CAS Users List
Subject: [cas-user] E
Looks like Hibernate Validator is missing from the classpath.
--Original Message--
From: Gabi Teris
To: CAS Users List
ReplyTo: CAS Users List
Subject: [cas-user] Error on starting cas-server
Sent: May 4, 2010 5:08 AM
Error creating bean with name 'validationAnnotationBeanPostProcessor'
Which version of cas? Are you using an old config file?
--Original Message--
From: Gabi Teris
To: CAS Users List
ReplyTo: CAS Users List
Subject: [cas-user] Error on starting cas-server
Sent: May 4, 2010 5:08 AM
Error creating bean with name 'validationAnnotationBeanPostProcessor' defi
60 matches
Mail list logo