Hi Eric,
You might want to try JSON-based service registry which reloads the changes
into the in-memory representation when the JSON file definition changes. It's
lightweight, human-readable, and would support the use cases that you have
described.
https://github.com/Unicon/cas-addons/blob/mas
Folks,
any experiences out there integrating CAS with Peoplesoft 9?
Thanks,
Dmitriy.
Sent from my iPhone
--
You are currently subscribed to cas-user@lists.jasig.org as:
arch...@mail-archive.com
To unsubscribe, change settings or access archives, see
http://www.ja-sig.org/wiki/display/JSG/cas
swer any questions.
>
> -Bryan
>
> -Original Message-
> From: Dmitriy Kopylenko [mailto:dmitriy.kopyle...@gmail.com]
> Sent: Thursday, June 21, 2012 4:56 AM
> To: cas-user@lists.jasig.org
> Subject: [cas-user] Peoplesoft 9
>
> Folks,
>
> any experiences
Folks,
the cas-addons project is released and is available in Maven central:
net.unicon.cas
cas-addons
0.5
The main point of this release is the beginning of adding 'strong'
authentication factors support and currently contains the implementation of
an AuthenticationHandler and sup
Folks,
this is just an informational message about the lightweight JSON validation
response for service tickets is available in cas-addons. The successful
validation response contains a set of exposed principal attributes and
basically looks like this:
{"user":"u1",
"authenticationTime":13418440
Folks,
cas-addons 0.6 is released and should be available in Maven central under
these coordinates:
net.unicon.cas
cas-addons
0.6
The changelog for this release can be found here:
https://github.com/Unicon/cas-addons/blob/master/changelog.md
Cheers,
Dmitriy.
--
You are currentl
It has to do with the new monitor framework - ehcache ticket registry is not
supported at the moment. Just comment out the ticket registry monitor bean at
the end of deployerConfigContext.xml
Cheers,
Dmitriy.
Sent from my iPhone
On Jul 20, 2012, at 8:24, "Andres" wrote:
> Hi all,
>
> I'm tr
Folks,
cas-addons 0.7 should be available in Maven central.
This release has 2 useful components:
1) JSON-based extension of person directory's ComplexStubPersonAttributeDao
for ease of definition of complex user attribues during development cycle
and without the need to restart CAS web app when
It's actually been captured and discussed recently:
https://issues.jasig.org/browse/CAS-1139
Cheers,
D.
On Fri, Jul 20, 2012 at 11:19 AM, Misagh Moayyed wrote:
> Captured the issue here:
>
> https://issues.jasig.org/browse/CAS-1148
>
> ** **
>
> *-*Misagh*
>
> *
>
> ** **
>
> *From:* epi
Folks,
cas-addons project's site now lives here:
http://unicon.github.com/cas-addons/project-info.html
Cheers,
Dmitriy.
--
You are currently subscribed to cas-user@lists.jasig.org as:
arch...@mail-archive.com
To unsubscribe, change settings or access archives, see
http://www.ja-sig.org/wiki/d
Works fine here.
On Mon, Jul 23, 2012 at 8:51 AM, Scott Battaglia
wrote:
> It just worked for me.
>
>
> On Mon, Jul 23, 2012 at 5:34 AM, Marvin Addison
> wrote:
>
>> > http://unicon.github.com/cas-addons/project-info.html
>>
>> I wanted to refer someone to the URL above this morning, but the
>>
Wonderful! Eric, any objections making it part of cas-addons?
Dmitriy.
Sent from my iPad
On Aug 5, 2012, at 10:15 PM, Eric Pierce wrote:
> If there's anyone else out there that's using JsonServiceRegistryDao from
> Unicon's cas-addons repository (https://github.com/Unicon/cas-addons), I've
Sure thing. No problem at all.
Cheers,
Dmitriy.
Sent from my iPhone
On Aug 6, 2012, at 12:23, Eric Pierce wrote:
> I'd rather keep it in my Github account, but how about including a link to it
> in the cas-addons repo?
>
> -Eric
>
> On Sun, Aug 5, 2012 at 10:5
Folks,
cas-addons 0.9 is now available. This release's addition is
GrouperPersonAttributeDao that could be used to pull authenticated
principal's attributes from Grouper's back end.
https://github.com/Unicon/cas-addons/blob/master/changelog.md
Cheers,
Dmitriy.
--
You are currently subscribed t
Robert,
I will create a wiki entry how to set it up.
Cheers,
Dmitriy.
Sent from my iPhone
On Aug 16, 2012, at 13:36, Robert Beer wrote:
> Could someone provide an example of a deployerConfigContext.xml utilizing the
> new JsonServiceRegistryDao? Any pointer to some documentation how to
>
Here's the the wiki page:
https://github.com/Unicon/cas-addons/wiki/Configuring-JSON-Services-Registry
Cheers,
Dmitriy.
On Thu, Aug 16, 2012 at 1:53 PM, Dmitriy Kopylenko <
dmitriy.kopyle...@gmail.com> wrote:
> Robert,
>
> I will create a wiki entry how to set it up.
&
Folks,
the version 0.9.5 of cas-addons should be available under the following
maven coordinates:
net.unicon.cas
cas-addons
0.9.5
The changelog for this release could be found here:
https://github.com/Unicon/cas-addons/blob/master/changelog.md
The next target version is 1.0-M1.
H
This might be helpful:
https://groups.google.com/forum/#!searchin/jasig-cas-user/berkeleydb/jasig-cas-user/bV7BPCIl3SY/VEXdWXev-68J
Cheers,
Dmitriy.
On Fri, Aug 31, 2012 at 10:53 AM, Morley Howell wrote:
> We’re using the berkeleydb ticket registry under 3.4.7, but we’re looking
> at upgrading
for clustering support, minimal/no runtime setup
> or maintenance, etc.
>
> ** **
>
> Morley
>
> ** **
>
> *From:* Dmitriy Kopylenko [mailto:dmitriy.kopyle...@gmail.com]
> *Sent:* August-31-12 11:35 AM
> *To:* cas-user@lists.jasig.org
> *Subject:* Re: [cas-u
Folks, the Stormpath Authentication Handler has landed in cas-addons. It
should be available in a week or so in maven central as cas-addons-1.0-M1
https://github.com/Unicon/cas-addons/wiki/Configuring-Stormpath-Authentication-Handler
Cheers,
Dmitriy.
--
You are currently subscribed to cas-u
Folks,
cas-addons 1.0-M1 has been released and is available in maven central. The
changelog is here:
https://github.com/Unicon/cas-addons/blob/master/changelog.md
Next version is 1.0-RC1.
Do not hesitate to request features that you would like to see in CAS, but
are much more difficult to add to
One could also use a composite AuthenticationHandler to exercise a "Chain of
Responsibility" pattern based on specific credential types with a list of
concretely implemented handlers, without introducing a custom
AuthenticationManager.
Cheers,
Dmitriy.
Sent from my iPhone
On Sep 29, 2012, at
Folks,
the cas-addons version 1.0 has been released and is available in Maven
central under the following coordinates:
net.unicon.cas
cas-addons
1.0
The source code for the project can be found here:
https://github.com/Unicon/cas-addons
Cheers,
Dmitriy.
--
You are currently subs
> Is there any way to config cas not to throw away ST. Instead make is valid
> for a period of time?
>
>
>
Yes, that is possible by configuring serviceTicketExpirationPolicy:
https://github.com/Jasig/cas/blob/master/cas-server-webapp/src/main/webapp/WEB-INF/spring-configuration/ticketExpir
Eric,
the init method is "loadServices" now, and you'd need to add the change
detecting notification config, as described here:
https://github.com/Unicon/cas-addons/wiki/Configuring-JSON-Service-Registry
Cheers,
Dmitriy
On Oct 23, 2012, at 16:28, Eric Pierce wrote:
> Has the configuration c
Hi Carlos,
would you mind attaching your servicesRegistry.conf file?
Thanks,
Dmitriy.
Sent from my iPhone
On Oct 31, 2012, at 16:53, Carlos Fernandez wrote:
> Good afternoon,
>
> I’m testing CAS 3.5.1 with CAS Addons 1.0 and JSON service registry and so
> far it’s working except where I tr
E you have
indicated)?
Thanks,
Dmitriy.
On Thu, Nov 1, 2012 at 9:39 AM, Carlos Fernandez wrote:
> Dmitriy,
>
> ** **
>
> ** **
>
> The file is attached.
>
> ** **
>
> Best regards,
>
> --****
>
> Carlos.
>
> ** **
>
> *Fr
are in the attached zip file.
>
> ** **
>
> Best regards,
>
> --****
>
> Carlos.
>
> ** **
>
> *From:* Dmitriy Kopylenko [mailto:dmitriy.kopyle...@gmail.com]
> *Sent:* Sunday, 04 November, 2012 17:30
> *To:* cas-user@lists.jasig.org
> *Subject:
; level in deployerConfigContext.xml), in something like
spring-configuration/resourceChangeWatcherContext.xml
Cheers,
Dmitriy.
On Mon, Nov 5, 2012 at 11:55 AM, Dmitriy Kopylenko <
dmitriy.kopyle...@gmail.com> wrote:
> Carlos, in trying to reproduce the problem you mentioned, would you please
Folks,
cas-addons 1.0.2 has been released and is available in Maven central. Two
features of this release are:
* Salted PasswordEncoder support:
https://github.com/Unicon/cas-addons/wiki/Configuring-ShiroHashServicePasswordEncoder
* Custom external redirect URL option for unauthorized services
Currently there is no such a remote resource/API
Dmitriy.
Sent from my iPhone
On Nov 8, 2012, at 14:07, Nemanja Guzina wrote:
> Hi,
>
> Does CAS server has an API for getting a registered services via WebService?
> I have an application that manages users for all applications that are
> conn
The JSON services registry does not support persistence via services management
web app.
Dmitriy.
Sent from my iPhone
On Nov 10, 2012, at 5:00, Nguyen Cao Dat wrote:
> Hi everyone,
>
> I have deployed CAS 3.5.1 with JsonServiceRegistryDao. When I create a
> new service through Service Manag
Folks,
cas-addons 1.0.3 has been released and is available in Maven central. Two
new features of this release are:
* TicketSupport convenience API:
https://github.com/Unicon/cas-addons/blob/master/src/main/java/net/unicon/cas/addons/ticket/TicketSupport.java
* Active SSO Sessions Report:
https:/
I'd go with InteliJ IDEA :-)
Cheers,
Dmitriy.
On Mon, Nov 12, 2012 at 11:41 AM, Misagh Moayyed wrote:
> If you’re referring to the warning that says “the plugin does not support
> the default lifecycle”, you can safely ignore it.
>
> ** **
>
> …or you could also install this the “fix” from
To simplify this tgtId -> principal "extraction dance", there is a convenience
API (with the default implementation) in cas-addons that could be used:
https://github.com/Unicon/cas-addons/blob/master/src/main/java/net/unicon/cas/addons/authentication/AuthenticationSupport.java
Cheers,
Dmitriy.
Hi.
Check out "Active SSO sessions report" which might satisfy some of your needs:
https://github.com/Unicon/cas-addons/wiki/Active-SSO-Sessions-Report
Also, using Apache Camel to generate and send real time login/logout events to
external systems might just do the job implementing your use ca
n the CAS API is there a hook, that would trigger my custom code on each
> login/logout (in my case, the custom code would be publishing through Camel).
>
> Thanks again
>
>
>
> - Original Message -
> From: Dmitriy Kopylenko
> To: cas-user@lists.jasig
Here's a follow up (should be available in 1.1 coming soon):
https://github.com/Unicon/cas-addons/wiki/CAS-server-events
Cheers,
Dmitriy.
On Nov 27, 2012, at 6:08 PM, Dmitriy Kopylenko wrote:
> That's what I have started working on today in cas-addons :-) (expect to see
> it
You should not manually pass the 'execution' param. Just access login page as
/login.
Cheers,
Dmitriy.
Sent from my iPhone
On Dec 26, 2012, at 5:11, "y-suz...@sec.co.jp" wrote:
> Hello, all.
>
> I have a problem using jasig CAS 3.5.1.
> When I access the CAS login page with a Http GET param
When logging out, it would be a responsibility of a client application to
destroy its Session store (created by CAS client library) which caches
authenticated Principals in it.
Dmitriy.
Sent from my iPhone
On Dec 27, 2012, at 17:45, Farzan Qureshi wrote:
> Hi Eric,
>
> I confirm that I am a
Sure is possible. One strategy to do this would be:
1) Create a simple "strategy" interface/impl that takes a principal id and does
an additional validation (checking the status against a DB2 data source in this
case)
2) Add an additional action state to the CAS' login flow to execute this check
Folks, Happy New Year!
The cas-addons 1.1 is now released and is available in Maven central.
The main features of this release:
* Updated pom dependencies to the latest version (where available)
* Convenience "Assertions" utility class:
https://github.com/Unicon/cas-addons/blob/master/src/main/
Sent from my iPhone
On Jan 7, 2013, at 16:49, "Ken Maruyama" wrote:
> Hi Dmitriy,
>
> I'm trying to follow your suggestion, but have some questions.
>
> First, when you say I should create a interface/impl, do you mean to create a
> implementation of AuthenticationHandler?
No. I mean a sep
that will be
> great.
>
> Thank you,
>
> Ken Maruyama
> Technical Architect
> Fashion Institute of Design & Merchandising
> 1-213-624-1201 Ex.4525
> kmaruy...@fidm.edu
>
>
>
> From:Dmitriy Kopylenko
> To:
> Date:01/07/20
tor args, so
needs a proper xmlns declaration in the beans element header as to avoid any
pain debugging if it fails. Of course this is just an example and you could
choose not to use the 'c' namespace.
Hope this helps.
Dmitriy.
On Jan 8, 2013, at 3:23 PM, Dmitriy Kopylenko
Glad it worked out!
Cheers,
Dmitriy.
Sent from my iPhone
On Jan 9, 2013, at 20:08, "Ken Maruyama" wrote:
> Dmitriy,
>
> Thank you very much for your help.
> I was able to achieve what I wanted to do.
> --
> You are currently subscribed to cas-user@lists.jasig.org as:
> dmitriy.kopyle...@gma
Usually CAS client's useSession=true is the culprit here.
Dmitriy.
Sent from my iPhone
On Jan 11, 2013, at 19:45, Andrew Morgan wrote:
> On Wed, 9 Jan 2013, Andrew Petro wrote:
>
>> Hi Farzan,
>>
>> Shibboleth can be complex, yes, with much to learn about it and many
>> opportunities to con
Eric,
the authenticated principal is not available in the flow scope after a
successful authentication and SSO session establishment. TGT id String is. So
to get to the authenticated principal id, you'd need to do this dance:
* TickerRegistry#getTicket(String)
* TicketGrantingTicket#getAuthen
>From the log entries, it seems that the ST in question has expired, therefore
>it is considered invalid.
Dmitriy.
Sent from my iPhone
On Jan 24, 2013, at 4:45, Hendrik Coetzee wrote:
> Good day,
>
> We have an intermitted error that appears on ticket expiry,
> here is what we can see in th
ass="com.locustec.authentication.LookupAccountStatusAction">
> p:ticket=""
>
>
>
>
> but I'm not sure how to get a handle to the ticket.
>
> Thanks for any ideas,
> Eric
>
>
> -Original Me
Hi Rick.
Can you please send the pom.xml of your CAS overlay?
Thanks,
Dmitriy.
On Feb 25, 2013, at 10:23 AM, Richard Versace wrote:
> Misagh,
>
> Thanks for the hint, but as I said, I'm sort of coming in in the middle of
> the movie and that doesn't mean much to me right now.
>
> Could you
l
get properly ported into the newest configuration files from the CAS
version in question.
Cheers,
Dmitriy.
On Mon, Feb 25, 2013 at 10:59 AM, Richard Versace wrote:
> Here you go.
>
>
> On Mon, Feb 25, 2013 at 10:33 AM, Dmitriy Kopylenko > wrote:
>
>> Hi Rick.
>>
t;>> 1.2
>>>
>>>
>>> in the pom.xml file and it all works like magic???
>>>
>>> Or did I miss something?
>>>
>>>
>>> On Mon, Feb 25, 2013 at 11:59 AM, Richard Versace
>>> wrote:
>>>>
Have you added change notification support as described here?
https://github.com/Unicon/cas-addons/wiki/Configuring-JSON-Service-Registry
Cheers,
D.
On Feb 26, 2013, at 1:16 PM, Richard Versace wrote:
> Ok, one last time...
>
> I have the allowedAttributes working but it seems like they won't
ace wrote:
> Yes I have. I can see the operation taking place in the log file when I add
> the attributes to to file but I don't see them being released in the test
> program someone wrote until after I restart cas.
>
>
> On Tue, Feb 26, 2013 at 3:10 PM, Dmitriy Kopylenko
Hi Jonathan,
see if this code will be of any help: https://github.com/forsetti/libcas
Cheers,
Dmitriy.
On Mar 12, 2013, at 3:58 PM, Jonathan wrote:
> Hi,
> Is there a CAS client in C without using mod_auth_cas?
> I need to validate the CAS service ticket in my C server. No apache on this
> se
There is one other option that would eliminate the need to "hack"
casServiceValidationSuccess.jsp:
https://github.com/Unicon/cas-addons/wiki/Configuring-JSON-Validation-Response
Cheers,
Dmitriy.
On Mar 27, 2013, at 12:23 PM, Robert Oschwald
wrote:
> See
> https://wiki.jasig.org/display/CASU
Folks,
just FYI, there is a new custom 'cas' namespace config support in cas-addons
which will be available in version 1.3:
https://github.com/Unicon/cas-addons/wiki/Custom-CAS-configuration-XML-namespace
Cheers,
Dmitriy.
--
You are currently subscribed to cas-user@lists.jasig.org as:
arch...
No need to copy EhcacheTicketRegistry.java from the wiki into overlay as the
latest CAS includes that class. Probably the wiki needs to be updated.
Cheers,
Dmitriy.
On Apr 3, 2013, at 2:28 PM, Derek Lofstrom wrote:
> Trying to follow the instructions for implementing EhCacheTicketReg at:
> htt
y-core-3.1.0.RELEASE.jar
> person-directory-api-1.5.0-RC6.jar
> person-directory-api-1.5.1.jar
>
> -Thanks
> Stephen More
>
>
>
>
> On Wed, Mar 27, 2013 at 12:44 PM, Dmitriy Kopylenko
> wrote:
> There is one other option that would eliminate the need to &quo
>
> I am currently running 3.4.12. I added cas-addons 1.2 now I have conflicting
> jars in my lib dir:
> spring-security-core-3.0.5.RELEASE.jar
> spring-security-core-3.1.0.RELEASE.jar
> person-directory-api-1.5.0-RC6.jar
> person-directory-api-1.5.1.jar
>
> -Thanks
&
rom source against the
> latest 3.3 (cas java client) snapshot.
>
> Yes, the snapshot has multiple new features in it that I am currently using.
> No I can not use 3.2.1.
>
>
> On Wed, Apr 10, 2013 at 4:23 PM, Dmitriy Kopylenko
> wrote:
> Stephen,
>
> can you
Stephen,
I've committed the initial refactoring to be built on top of CAS Java Client
3.3. Try to build cas-java-clients-addons from source again.
Cheers,
Dmitriy.
On Apr 10, 2013, at 5:49 PM, Dmitriy Kopylenko wrote:
> In this case, the current source for cas-java-clients-addons wo
shed at: Wed Apr 17 11:05:28 EDT 2013
> [INFO] Final Memory: 54M/661M
> [INFO]
>
>
>
> On Sat, Apr 13, 2013 at 11:04 AM, Dmitriy Kopylenko
> wrote:
> Stephen,
>
> I've committed the initi
CAS logs on Tomcat would be a good start.
Dmitriy.
On Apr 17, 2013, at 1:24 PM, Richard Versace wrote:
> I have a test cas server and a production cas server. I assemble the war
> file using mvn 2.
>
> I modified the test server to use the JSON method of persisting the
> services, which wo
I've pushed new role-based authorization facility to cas-addons. Should be part
of 1.5 release (some time in May):
https://github.com/Unicon/cas-addons/wiki/Role-Based-Services-Authorization
Cheers,
Dmitriy.
On Apr 18, 2013, at 10:14 AM, Misagh Moayyed wrote:
> Typically, you'd let the applic
This might be helpful: https://wiki.jasig.org/display/CASUM/Technical+Overview
Cheers,
Dmitriy.
On Apr 26, 2013, at 11:18 AM, Rohit Kotecha wrote:
> Hi All,
>
> I am integration with CAS with our spring security web application.
>
> I have some question on how CAS will generate Service tick
Hi Jason,
can you please attach relevant configuration files?
Thanks,
Dmitriy.
Sent from my iPhone
On May 23, 2013, at 14:45, "Jason Schwanz" wrote:
> I've got CAS 3.5.2 setup and working properly with Unicon's JSON service
> registry, and now I'm trying to configure their Role Based Service
ems Administrator
> George Fox University | Administrative Computing
> jschw...@georgefox.edu | 503/554-2580
>
>
> On Thu, May 23, 2013 at 11:50 AM, Dmitriy Kopylenko
> wrote:
> Hi Jason,
>
> can you please attach relevant configuration files?
>
> Thanks,
OK, this should be fixed now. The version 1.5.2 of cas-addons should be
available in Maven central.
Cheers,
Dmitriy.
On May 23, 2013, at 3:23 PM, Dmitriy Kopylenko wrote:
> Thanks Jason. You have actually uncovered a bug. I will fix it and the fix
> should be available in cas-addons
This facility has been implemented and released in cas-addons. Take a look to
see if it would satisfy your needs:
https://github.com/Unicon/cas-addons/wiki/Role-Based-Services-Authorization
Best,
Dmitriy.
On Jun 12, 2013, at 3:21 PM, Marvin S. Addison wrote:
>> One of our needs is access
>> g
I assume that happens when there is no 'service' param and CAS tries to render
a successful generic login page. Correct? If so, that is a side effect that is
caused by 'terminateWebSessionListener' bean defined in cas-servlet.xml. You
could a) disable one b) set the 'timeToDieInSeconds' property
Hi Matt. The cas-addons issues on GH would be the best place for this
discussion: https://github.com/Unicon/cas-addons/issues
Thank you.
Dmitriy.
On Aug 6, 2013, at 5:33 PM, Matt Elson
wrote:
> Apologies if this is the wrong list for this or if I missed some
> documentation, but I'm having a
Or, one could simply use the "AuthenticationSupport" API of cas-addons like
this: authenticationSupport.getAuthenticatedPrincipalFrom(tgtId).getId() (Note
that there is no need to directly inject TicketRegistry as it is already
encapsulated in the DefaultAuthenticationSupport implementation).
h
… and perhaps this: https://github.com/UniconLabs/cas-sso-sessions-report :-)
Cheers,
Dmitriy.
On Sep 26, 2013, at 12:40 PM, Misagh Moayyed wrote:
> You might be interested in this:
> https://github.com/Unicon/cas-addons/wiki/Active-SSO-Sessions-Report
>
> From: "Rakesh"
> To: cas-user@lists.
Aaron,
no, you are not being stupid at all. The thing is, you don't have to know the
class name of that registry implementation. Just use the custom XML element to
define it and it will create an appropriate instance, just like the doc says:
http://www.springframework.org/schema/beans";
Here’s an example of a custom AuthenticationHandler that authenticates against
Stormpath cloud service:
https://github.com/Unicon/cas-addons/blob/master/src/main/java/net/unicon/cas/addons/authentication/handler/StormpathAuthenticationHandler.java
In your case, you would need to create a custom
r that?
>
> thanks
>
> From: Dmitriy Kopylenko [mailto:dkopyle...@unicon.net]
> Sent: Wednesday, November 13, 2013 4:32 PM
> To: cas-user@lists.jasig.org
> Subject: Re: [cas-user] Sending domain parameter
>
> Here’s an example of a custom AuthenticationHand
Just as an awareness message:
there is an alternative distributed TicketRegistry implementation based on
Hazelcast available in cas-addons 1.9 which hasn't seen any wide deployments
yet, but could be a viable alternative to EhCache TicketRegistry:
https://github.com/Unicon/cas-addons/wiki/Confi
Try using plain UsernamePasswordCredentialsToPrincipalResolver without wrapping
it in CredentialsToLDAPAttributePrincipalResolver.
Best,
Dmitriy.
Sent from my iPad
On Nov 19, 2013, at 9:10 PM, Baron Fujimoto wrote:
> Anyone? Is there a perhaps a more useful way to frame my query?
>
> Speci
Sounds like a bug to me.
D.
On Nov 21, 2013, at 11:27 AM, Rafael Pineros wrote:
> Hello all,
>
>
> There seems to be an issue when performing a logout from CAS Server 4.0RC2
> when using a JPA Ticket Registry.
>
> In the CentralAuthenticationServiceImpl we have:
>
>
> 226logger.d
Hi Ray. You'd need to invent a kind of 'Credentials' implementation that
encapsulates this host/ip info and get that info into it somewhere in the login
flow before those credentials are passed onto your custom authn handler's
"authenticate" method.
Happy New Year!
Dmitriy.
Sent from my iPh
13, Idan Fridman wrote:
>
> Hi Dmitriy,
>
> How would you build that flow? How can I modify that 'Credentials' object
> before the auth handler's being invoked.
>
> Thanks,
> Idan.
>
> From: Dmitriy Kopylenko [mailto:dmitriy.kopyle...@gmail.com]
This information should be available in the Authentication object's
encapsulated attribute bound to the following key:
https://github.com/Jasig/cas/blob/v3.5.2/cas-server-core/src/main/java/org/jasig/cas/authentication/AuthenticationManager.java#L38
without the need for custom MetadataPopulator
Perhaps this might be of help:
https://github.com/Unicon/cas-addons/wiki/Role-Based-Services-Authorization
Cheers,
Dmitriy.
Sent from my iPhone
> On Jan 8, 2014, at 20:26, Joe Osowski wrote:
>
> Is there a best practice for allowing certain users (being a
> principal) access to certain servi
Hi Ted. This might be able to help you:
https://github.com/Unicon/cas-addons/wiki/Configuring%20services%20initiating%20SSO%20sessions
Just one note about this implementation is that the CAS SLO must be turned off
(which as I see from your description is not the case for you) - I don’t
remember
Try this one:
http://jasig.github.io/cas/current/installation/Service-Management.html
Dmitriy.
On Feb 3, 2014, at 9:24 AM, Adam Causey wrote:
> Misagh, I appreciate the response, but the page you sent returns a 404 Page
> Not Found.
>
> Thanks,
> Adam
>
>
> On Fri, Jan 31, 2014 at 11:56 AM
Hi Kristen. You don’t need to clone and build the entire CAS source tree in
order to use CAS. Instead, the Maven war overlay method is the recommended
approach. Try following this document:
http://jasig.github.io/cas/current/installation/Maven-Overlay-Installation.html
Best,
Dmitriy.
On Feb 4,
Hi Jonathan,
Hi Jonathan,
you’d just need to pull in the uniqueIdGenerators.xml into your overlay’s
WEB-INF/spring-configuration directory and redefine the following bean like so:
Best,
Dmitriy.
On Feb 21, 2014, at 2:55 PM, Liedy, Jonathan wrote:
> Hey al
Test… (effectively to test if I get a barrage of auto responses)
D.
On Mar 21, 2014, at 12:14 PM, Marvin Addison wrote:
>> That might help; however, most of the objectionable "not available" messages
>> I see come directly to me, not through the list.
>
> I've worked with our mailing list adm
Ooops… I got one...
Begin forwarded message:
> From: Tan Teck Tim
> Subject: Out of Office: [cas-user] annoying responses
> Date: March 21, 2014 at 1:28:30 PM EDT
> To: Dmitriy Kopylenko
>
> I am not in office on 21 MAR FRI . I may have limited access to email duing
>
You might want to put the HazelcastTicketRegistry on your “to try” list, as
Hazelcast supports Amazon EC2 auto discovery for its cluster natively:
https://github.com/Unicon/cas-addons/wiki/Configuring-HazelcastTicketRegistry
http://hazelcast.org/docs/latest/manual/html/ec2autodiscovery.html
Che
Looking at the JRadiusServerImpl in 4.0, the constructor only takes the
protocol and RadiusClientFactory (no 'number of retries’ property)
https://github.com/Jasig/cas/blob/v4.0.0/cas-server-support-radius/src/main/java/org/jasig/cas/adaptors/radius/JRadiusServerImpl.java#L72
So apparently the w
It’s this SWF action state implementation that handles the job:
https://github.com/Jasig/cas/blob/v3.5.2.1/cas-server-core/src/main/java/org/jasig/cas/web/flow/AuthenticationViaFormAction.java
Note that the above is for the 3.5.2.1 version. Here’s the version of the same
class in the master:
ht
hand it back
> to the browser? If so, can you point me in the general vicinity of where
> this communication is happening? Thanks again!
>
> From: Dmitriy Kopylenko [mailto:dkopyle...@unicon.net]
> Sent: Tuesday, June 03, 2014 9:13 AM
> To: cas-user@lists.jasig.org
> Subjec
:05 AM, Dmitriy Kopylenko wrote:
> That happens in the following action state implementation (v3.5.2.1 and
> master respectively):
>
> https://github.com/Jasig/cas/blob/v3.5.2.1/cas-server-core/src/main/java/org/jasig/cas/web/flow/SendTicketGrantingTicketAction.java
>
> https:
’t that indicate an error? Thanks again!
>
> From: Dmitriy Kopylenko [mailto:dkopyle...@unicon.net]
> Sent: Tuesday, June 03, 2014 10:06 AM
> To: cas-user@lists.jasig.org
> Subject: Re: [cas-user] What controller handles login post?
>
> That happens in the following acti
I’ll try. There is nothing special how we (at Unicon) define the CAS props and
the referenced overlay is just an example of best practices of what worked
really well for our CAS deployments. As Scott explained, it is 'either OR'
situation in the way that the PPC (PropertyPlaceholderConfigurer) i
Here’s some insight into this req-resp - on the second HTTP POST with correct
credentials, HTTP 302 is returned and browser simply re-issues GET to the
/login resource:
Remote Address:75.101.143.131:80
Request URL:http://mycas.commercehub.cloudbees.net/login
Request Method:POST
Status Code:302 F
pology/technologies and
> is definitely a problem with CAS itself.
>
> From: Dmitriy Kopylenko [mailto:dkopyle...@unicon.net]
> Sent: Friday, June 27, 2014 2:16 PM
> To: cas-user@lists.jasig.org
> Subject: Re: [cas-user] CAS: Broken webflow on failed authentication on 4.0.0?
>
1 - 100 of 244 matches
Mail list logo
