Hi Kais trying to get in touch regarding this CAS issue you posted while ago. I wrote a long letter but seems google didnt send it, so next try :) Anyway, I cant get working oidc part of the cas and seems you were successful. Is there any way I could get in touch with you to consult for couple of minutes of how you actually achieved it. I'm seeing very strange behaviour of CAS.
I could give you a call or just describe the setup in our dev. environment. Br [email protected] skype: priit.serk +372 53 411 017 On Wednesday, August 16, 2017 at 2:25:33 PM UTC+3, Kais Elouragini wrote: > > Dear CAS Community, > > > I have CAS with OIDC installed and I have added a service as follows and > it's working fine : > > { > "implicit": true, > "logoutType": "BACK_CHANNEL", > "@class": "org.apereo.cas.services.OidcRegisteredService", > "evaluationOrder": 1, > "clientId": "TEST", > "bypassApprovalPrompt": true, > "jsonFormat": true, > "jwks": "file:\/etc\/cas\/jwks\/\/enc-test-42.pub.jwks", > "signIdToken": true, > "description": "Test", > "generateRefreshToken": true, > "idTokenEncryptionEncoding": "A128GCM", > "name": "Test client", > "clientSecret": "TEST", > "id": 42, > "idTokenEncryptionAlg": "RSA-OAEP-256", > "scopes": ["java.util.HashSet", ["openid", "profile", "email", > "address", "phone"]], > "serviceId": "https:\/\/redirect-host/callback", > "encryptIdToken": true > } > > In order to login using CAS, I'm calling this URL : > > http://cas-server/oidc/authorize?response_type=id_token+token&client_id=TEST&redirect_uri=https:\/\/redirect-host/callback&scope=openid+profile+email+phone+address > > Login works fine but after being redirected from CAS to callback url, the > accessToken is being appended to callback url with "#" not "?". > > https://redirect-host/callback#accessToken=..... > > Can I change "#" to "?" ? I need to have parameters with ? so that I can > read them in the callback server. (using $_GET in PHP for example) > > > In CAS source code, I found that Redirect URL is being built in " > OAuth20TokenAuthorizationResponseBuilder.java > <https://github.com/apereo/cas/blob/master/support/cas-server-support-oauth/src/main/java/org/apereo/cas/support/oauth/web/response/callback/OAuth20TokenAuthorizationResponseBuilder.java> > ". > > > Kindly advise. > > > Thank you. > -- - Website: https://apereo.github.io/cas - Gitter Chatroom: https://gitter.im/apereo/cas - List Guidelines: https://goo.gl/1VRrw7 - Contributions: https://goo.gl/mh7qDG --- You received this message because you are subscribed to the Google Groups "CAS Community" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To view this discussion on the web visit https://groups.google.com/a/apereo.org/d/msgid/cas-user/5daa3767-8e0d-4c94-a9f4-fe2ae6562074%40apereo.org.
