Hi,
Some days ago I was been doing some tests with the ticket expiration.
What I have found is that if you have the jsession still available you will be
able to access to your protected resource. If the jsession cookie is deleted or
expired a new jsession will be created as long as your TGT
We using CAS as our authentication service for our apps.
CAS is connected to our Active directory.
When users in our organization log in to windows they logging via the same AD
nodes.
Is it possible to configure CAS somehow(or any other way) when a user is
logging in to windows he will be
Hi cas users,
I have exactly the same issue : after I start Firefox I need to log in 2 or
3 times before it works. The issue may also appear with other browser, but
I cant reproduce it. When login doesn't work, there's nothing in CAS logs,
neither error nor debug information.
I'm using
I can login successfully to CAS, e.g. to:
http://portal.acmeinc.com/cas/services
You mentioned SSL configuration but the URL above is plain http. You
should configure your servlet container to redirect requests for http
to https. Not sure that will solve the problem, but your SSL trace
suggests
Hi Ray,
We have done that with our CAS services.
I'm tied up at the moment, but will be glad to send you the details to put in
your files as soon as I have the chance.
Constance
cmor...@daltonstate.edu
-Original Message-
From: ray [mailto:id...@cellebrite.com]
Sent: Wednesday,
hi
Maybe you can see this: https://wiki.jasig.org/display/CASUM/SPNEGO
I hope it can help
Angelo
2014-02-05 Constance Morris cmor...@daltonstate.edu:
Hi Ray,
We have done that with our CAS services.
I'm tied up at the moment, but will be glad to send you the details to put
in your files
Change http://portal.acmeinc.com/CH/index.jsp To HTTPS://
I don't understand the stack trace, but when you download those 6 control
characters, you a accessing a SSL port with http.
Either change the port to a non-SSL or use https
Hope this helps!
On Wednesday, February 5, 2014 12:06 AM,
Hello,
Are using CAS 3.5.2 and have an issue whereby users can login without
entering their credentials, as follows:
* User logs in (entering their credentials)
* User logs out
* User goes to log in again, but instead of being presented with the
CAS login screen
Ray,
Angelo provided a really good link.
I use maven and will be glad to share notes if you.
If you're interested please contact me at
cmor...@daltonstate.edumailto:cmor...@daltonstate.edu
Have a great day,
Constance
From: Angelo Immediata [mailto:angelo...@gmail.com]
Sent: Wednesday,
hi
sure CAS stores cookies
You have to be sure that you call the logout URL of CAS and delete cookie
Anyway if you want to be sure if this issue is related to the cookie, try
to reproduce the issue and then, if the issue is reproduced, try to delete
all sotred cookies in the browser and see if
Hi folks
If you need that parameter for all services it could be ok but I think due
to pattern design reasons is better threat it in the client (aka your app)
using for example some cas attribute added to authentication passed from
your cas server.
Best regards
2014-02-04 Carlos co...@uoc.edu:
Seems that single loggout is not working. Are your client app configured
for accepts SLO SAML request?
https://wiki.jasig.org/display/casum/single+sign+out
2014-02-05 Carlos co...@uoc.edu:
Hi,
Some days ago I was been doing some tests with the ticket expiration.
What I have found is that
CAS uses Spring Web Flow to threat login features so uses session to store
some parameters,
If you are behind a proxy like Apache+Tomcat you can loss the jsessionid
cookie if you dont uses ProxyPassReverse directives.
All,
About a month and half ago, just before Christmas Break, we noticed that a few
users had a great deal of login attempts/re-validations to a specific
application. When I say great deal, I mean somewhere in the range of 6 to 7k
login attempts in about a 1 hour time frame, by one user.
I believe that in IE8 if the cache option is set to automatic, then IE8 will
ignore cache-control set to no-cache, and cache it anyway. You may have to
tweak the page a bit but you probably need something like:
meta http-equiv=Cache-Control content=no-cache, no-store, must-revalidate
/
meta
Hi,
make sure you have logged out though HTTPS
On Wed, Feb 5, 2014 at 5:27 PM, Nancy Snoke nsn...@thegeneral.com wrote:
I believe that in IE8 if the cache option is set to automatic, then IE8
will ignore cache-control set to no-cache, and cache it anyway. You may
have to tweak the page a
Hi,
My CAS server is configured as an OAuth server and I would like to replace
the InMemoryServiceRegistryDaoImpl with JpaServiceRegistryDaoImpl. But for
OAuth services we need to specify clientId, clientSecret etc. But the
service management add new service user interface does not support
No that would not affect the elements on a given page to be reloaded. What
the ** says, in short, is that Accept zero or more directories in the
path which effectively is the service url. Seems like you could have
benefited from ? instead. See the examples here [1].
If you are on a CAS version
Hi all,
We have a CAS instance configured to be an OpenID provider via the
openid-support module:
https://github.com/Jasig/cas/tree/master/cas-server-support-openid
However, we noticed that it does not seem to support OpenID 2.0's
identifier_select mode. In a nutshell, this is the mode
19 matches
Mail list logo