[cas-user] Ticket Lifespan question in protocol v3.0

In section 2.7.4 , it talks about proxy ticket generation extending parent service ticket lifetime. Does it really mean a PGT or a TGT, because I thought the ST was only

[cas-user] Using dynamic uris for security endPoint

Hi Cas users, How do I generate security end point based on the host system IP/DNS name that I use to validate against? The scenario I am talking about here is In a cloud based web application, where multiple external uri resources are mapped to different ports/uris internally the user tries to

[cas-user] Accessing the authenticated user in casGenericSuccess.jsp

We would like to be able to access the authenticated user in the casGenericSuccess.jsp view. I did find this article: https://github.com/Unicon/cas-addons/wiki/Authenticated-Principal-in-Generic-Success-Login-View but if is mostly described as part of CAS 3.5.2 and I've never seen it described f

Re: [cas-user] Comparing dynamically salted SHA512 encoded passwords from a database

Someone else my have an idea of what to look for, but when I hit something like this I attach a debugger to Tomcat and put a break point on my code and step through it. Perhaps there is an issue connecting to or querying the db that isn't being logged? On 8/20/14 7:57 AM, Liedy, Jonathan wrote: >

Re: [cas-user] Compiling and running CAS 3.5.2

Looks like I have Tomcat 6 installed. I will give Tomcat 7 a shot later today. Jeff On Tue, Aug 19, 2014 at 10:38 AM, John Gasper wrote: > Hi Jeff, > > I've not had any issues with any Tomcat 6 or Tomcat 7 versions that I've > used. I have not tried Tomcat 8 yet. > > John > > -- > *John Gasp

RE: [cas-user] Comparing dynamically salted SHA512 encoded passwords from a database

John & Dmitriy, Thanks for the pointers. Derek and I ended up grabbing a library from Blackboard and have used their classes to verify the password hashing. I'll put the file and the subsequent configuration and the error we're getting in hopes of getting pointed in the right direction. The

[cas-user] CAS rest api enabled in tomcat behind proxy

I got a CAS4.0 server running in tomcat, behind an apache reverse-proxy. So, the end-users goes to someurl.com/cas (apache). Apache forwards this request on behalf of the user to someurl.com:8443/cas (tomcat, cas). In tomcat, I have specified a proxyPort="443" argument for the http-connector 84

Re: [cas-user] Rememberme & Non-serializable object

Sorry to disturb the mailing list !!! I thought my problem was solved, but it was not :( when i add this line in deployerConfigContext.xml --> and i check the rememberMe box : i got this error in catalina.out 2014-08-20 15:01:10,497 DEBUG [org.jasig.cas.ticket.registry.MemCacheTicketRegistry]

Re: [cas-user] Destroy a user ticket on purpose

Michaël, If you know the TGC for the account (from the logs), you can hit the `/logout` endpoint with the cookie. Below is a short Python script I use for this purpose: #! /usr/bin/env python import urllib import urllib2 import sys def make_cookie(k, v): return "%s

[cas-user] Destroy a user ticket on purpose

Hello, I am using cas 4 with Active Directory and account states. I would like to know how I can destroy a user ticket to close his session on purpose. For example, the user logs in on Monday, session expiration is set on one week (for good user experience) but for security reasons, I need to dis