Re: [cas-user] CAS and multiple hostnames

Hi, Identity sessions are stored in the CASTGC cookie which is saved for the host name and path of the CAS server. This is the core security configuration of CAS. I'm surprised that it would work great with multiple hostnames. You already have a UI customization mechanism by service if it's what

Re: [cas-user] designing a fallback authentication scheme

Hi, I would not recommend to implement such a fallback mechanism on client side: it would be pretty complicated and you would lose all the benefits of a centralized authentication server (security, one link to the authentication source). Why not a failover with two CAS servers? It can be achieved

[cas-user] designing a fallback authentication scheme

Hi All, we are using CAS authentication to implement SSO model. we are using the JSR 196 for the extending the JAAS authorization. As part of this we are also implementing a fall back mechanism in situations where CAS is not available. in situations where CAS is not available, we want to presen

[cas-user] Java cas-client 3.3.3 logging

We're using the Java cas-client (3.3.3) to provide RemoteUser authentication for our Shibboleth IdP service. This version seems of the cas-client seems to require slf4j where our previously used version (3.2.1) didn't(?). I encountered the the following error until I put a copy of slf4j-api-1.7.10

RE: [cas-user] question about non-web console service registration

Thank you. I wanted to get some clarification for this, so that I can focus on one path. It seems that YAML is what I will pursue. Thanks again. From: Dmitriy Kopylenko [mailto:dkopyle...@unicon.net] Sent: Thursday, February 05, 2015 1:47 PM To: cas-user@lists.jasig.org Subject: Re: [cas-user] q

Re: [cas-user] question about non-web console service registration

There is no JSON svc registry addon for 4.0 (as CAS will have the native JSON impl in 4.1). For 4.0 simply use the YAML service registry addon if you desire so. https://github.com/unicon-cas-addons/cas-addon-yaml-services-registry

RE: [cas-user] question about non-web console service registration

I don't know whether that's strictly true, but I did say that if you were using CAS 4.0.x, the YAML version is easier to use. Milt Epstein Applications Developer Graduate School of Library and Information Science (GSLIS) University of Illinois at Urbana-Champaign (UIUC) mepst...@illinois.edu On

RE: [cas-user] question about non-web console service registration

Thank you. After packaging and deploying a new war, and experiencing many errors, I read the following and it seems that, to use JSON, I need to use CAS 4.1 (I am using 4.0) or incorporate the YAML service registry for CAS 4.0. “Minimum supported version of CAS in versions of the 1.x series of c

[cas-user] LPPE, Change Password Flow

I have LPPE working fine but when the password is expired or is set to must change password I need some help with the actions. This is something new I have been experimenting with, the current password management system sits behind CAS using clearPass so in order for a user to change their passwor

[cas-user] CAS 3.4.11 Upgrade

Hi, I was able to upgrade from CAS 3.4.11 to 3.4.12.1, but not to 3.5.2.1 or 3.5.2 or 3.5.3 But I noticed that CAS 3.4.12.1 at https://oss.sonatype.org/content/repositories/releases/org/jasig/cas/cas-server-core/ was updated on Tue Apr 01 09:00:37 CDT 2014. Does that mean that it's current and

RE: [cas-user] Apache mod_auth_cas with mpm_itk or mod_ruid2?

Hi Matt, Thank you for the response. I believe we found something workable by setting 1777 permissions (rwxrwxrwt) on the CASCookiePath. This way, no identity can read/write/remove a cookie created by another identity, but any identity can create and read its own cookies. The downside is that

Re: [cas-user] question about non-web console service registration

No. Follow instructions found here: https://github.com/Unicon/cas-addons/blob/master/README.md D. Sent from my iPhone > On Feb 5, 2015, at 12:53, Chris Adams wrote: > > So, is this the dependency that I need ? > > >net.unicon.cas >cas-addon-json-services-registry >1.0.0-RC1 >

RE: [cas-user] question about non-web console service registration

So, is this the dependency that I need ? net.unicon.cas cas-addon-json-services-registry 1.0.0-RC1 |-Original Message- |From: mepst...@gwork254.lis.illinois.edu |[mailto:mepst...@gwork254.lis.illinois.edu] On Behalf Of Milt Epstein |Sent: Wednesday, February 04,

Re: [cas-user] Apache mod_auth_cas with mpm_itk or mod_ruid2?

Neil, I don't think there is any real experience using mod_auth_cas with either itk or ruid2. Any suggestions on better model for file-based session state storage when using itk? -Matt On Tue, Feb 3, 2015 at 2:10 PM, Neil Sabol wrote: > Good day CAS users, > > > > I hope you are all well. >

[cas-user] CAS and multiple hostnames

We have a current CAS 3.4.12.1 installation with a local memcache ticket repository. For political reasons, we need to provide CAS authentication under a different theme/design, and under a different URI but sharing sessions. I understand that I could create another theme and map it to the serv