It looks like you need to create a service for the application. I don't think the wild card service applies to SAML applications, so you need a service specifically for this new application.
On Fri, Apr 20, 2018, 12:26 AM Jay <sjayanth.contrac...@lifetouch.com> wrote: > Thank you Dave. > > I guess it worked out for me, it was able to hit the IDP successfully and > I think I am missing something in the CAS-Overlay. Can you help me here. > Below is the error message I see when I hit the url that was generated in > sptest.iamshowcase.com/instructions after uploading the metadata file > generated locally. > > > <https://urldefense.proofpoint.com/v2/url?u=https-3A__lh3.googleusercontent.com_-2DNVA435Of-2DLw_WtmH752aYVI_AAAAAAAAAB8_PUCeCO-2DTD3wOq3t4yTDuAKPPm8aroebBACLcBGAs_s1600_Capture.PNG&d=DwMFaQ&c=spdyCQlbcMzVK9-MvWb-WQ&r=auWoa16BPqAWqsx-0-lnCDVAVu-ZWi_vyIfKhfMtR_E&m=1NQvVTVdJCK9NIGnq1Hu4VihNWUDizTLL5ksghvU9cc&s=vPYIrjOiVjBeO7Bapw07rO8q98RlS8Cjc4uZlvTbX6M&e=> > > > On Thursday, April 19, 2018 at 6:58:16 AM UTC-5, David Curry wrote: >> >> Just this week I discovered https://sptest.iamshowcase.com/ >> <https://urldefense.proofpoint.com/v2/url?u=https-3A__sptest.iamshowcase.com_&d=DwMFaQ&c=spdyCQlbcMzVK9-MvWb-WQ&r=auWoa16BPqAWqsx-0-lnCDVAVu-ZWi_vyIfKhfMtR_E&m=1NQvVTVdJCK9NIGnq1Hu4VihNWUDizTLL5ksghvU9cc&s=PWCyzjmv_ACQghMPaMkkykEe0LiGDJwKj18-pyD-dNI&e=> >> that lets you set up a custom SP to talk to your IdP for testing. You >> download their metadata, save it somewhere on your server >> (/etc/cas/saml/sp-metadata/iamshowcase.xml or something), upload your CAS >> IdP metadata to them, create a service definition, and you're done. Takes >> like 5 minutes. >> >> You can also use testshib.org >> <https://urldefense.proofpoint.com/v2/url?u=http-3A__testshib.org&d=DwMFaQ&c=spdyCQlbcMzVK9-MvWb-WQ&r=auWoa16BPqAWqsx-0-lnCDVAVu-ZWi_vyIfKhfMtR_E&m=1NQvVTVdJCK9NIGnq1Hu4VihNWUDizTLL5ksghvU9cc&s=3HFH-1ZQeb9_V_kpnFbnX63YI5VdtndntC1aw5tJAos&e=> >> of course, but personally I find it to be pretty cumbersome, both generally >> and because it's very Shibboleth/InCommon-centric (it's their site, so >> that's okay, but it's a hassle when you're wanting to use it for something >> else). >> >> --Dave >> >> >> >> -- >> >> DAVID A. CURRY, CISSP >> *DIRECTOR OF INFORMATION SECURITY* >> INFORMATION TECHNOLOGY >> >> 71 FIFTH AVE., 9TH FL., NEW YORK, NY 10003 >> +1 212 229-5300 x4728 • david.cu...@newschool.edu >> >> [image: The New School] >> >> On Thu, Apr 19, 2018 at 12:52 AM, Jay <sjayanth....@lifetouch.com> wrote: >> >>> Hi Matt, >>> >>> Thank you so much, that helped in setting up the Local CAS application >>> as IDP and was able to see the metadata generated carefully by invoking the >>> idp url (<cas server>/idp/metadata). >>> >>> To test it I was looking at setting up a local Shibboleth SP application >>> but couldn't since I use Windows and Apache Tomcat to run the CAS >>> application. Any info in this regard would really help. >>> >>> Thank you, >>> Jay >>> >>> On Thursday, April 12, 2018 at 2:47:40 PM UTC-5, Matthew Uribe wrote: >>>> >>>> Jay, >>>> >>>> I just recently went through an upgrade from CAS 3.5.2 to 5.2.0 and >>>> this documentation was immeasurably helpful: >>>> >>>> >>>> https://dacurry-tns.github.io/deploying-apereo-cas/building_server_saml_overview.html >>>> <https://urldefense.proofpoint.com/v2/url?u=https-3A__dacurry-2Dtns.github.io_deploying-2Dapereo-2Dcas_building-5Fserver-5Fsaml-5Foverview.html&d=DwMFaQ&c=spdyCQlbcMzVK9-MvWb-WQ&r=auWoa16BPqAWqsx-0-lnCDVAVu-ZWi_vyIfKhfMtR_E&m=1NQvVTVdJCK9NIGnq1Hu4VihNWUDizTLL5ksghvU9cc&s=S4CIfgkeTTCg7Rm8yvUMLW56WGxTOiyYHQPQe0mBAMg&e=> >>>> >>>> >>>> On Thursday, April 12, 2018 at 10:40:21 AM UTC-6, Jay wrote: >>>>> >>>>> Hello everyone, >>>>> >>>>> We are recently in process of upgrading from CAS3.5 to CAS5.2 as part >>>>> of this effort we need to provide support of SAML authentication to an >>>>> external application (say 'abc' application). >>>>> >>>>> Here 'abc' will be the SP and new CAS5.x will be the identity provider. >>>>> >>>>> Could someone guide us or tell how to achieve since we are new to >>>>> CAS5.x framework, it would be very helpful the achieve this >>>>> implementation. >>>>> >>>>> Thanks, >>>>> Jay >>>>> >>>> -- >>> - Website: https://apereo.github.io/cas >>> <https://urldefense.proofpoint.com/v2/url?u=https-3A__apereo.github.io_cas&d=DwMFaQ&c=spdyCQlbcMzVK9-MvWb-WQ&r=auWoa16BPqAWqsx-0-lnCDVAVu-ZWi_vyIfKhfMtR_E&m=1NQvVTVdJCK9NIGnq1Hu4VihNWUDizTLL5ksghvU9cc&s=xfU5hfR8PFkctJFm6pNSmBc1075133j7pr8DZJpZC5U&e=> >>> - Gitter Chatroom: https://gitter.im/apereo/cas >>> <https://urldefense.proofpoint.com/v2/url?u=https-3A__gitter.im_apereo_cas&d=DwMFaQ&c=spdyCQlbcMzVK9-MvWb-WQ&r=auWoa16BPqAWqsx-0-lnCDVAVu-ZWi_vyIfKhfMtR_E&m=1NQvVTVdJCK9NIGnq1Hu4VihNWUDizTLL5ksghvU9cc&s=0MEoZhpsTob_GUKc8pv6g-azXdG7cUfX57kAQ_1lgmE&e=> >>> - List Guidelines: https://goo.gl/1VRrw7 >>> <https://urldefense.proofpoint.com/v2/url?u=https-3A__goo.gl_1VRrw7&d=DwMFaQ&c=spdyCQlbcMzVK9-MvWb-WQ&r=auWoa16BPqAWqsx-0-lnCDVAVu-ZWi_vyIfKhfMtR_E&m=1NQvVTVdJCK9NIGnq1Hu4VihNWUDizTLL5ksghvU9cc&s=LryUe6SCq-exVxdj7m1CkFawwFIVShRxkiud4VkAm1E&e=> >>> - Contributions: https://goo.gl/mh7qDG >>> <https://urldefense.proofpoint.com/v2/url?u=https-3A__goo.gl_mh7qDG&d=DwMFaQ&c=spdyCQlbcMzVK9-MvWb-WQ&r=auWoa16BPqAWqsx-0-lnCDVAVu-ZWi_vyIfKhfMtR_E&m=1NQvVTVdJCK9NIGnq1Hu4VihNWUDizTLL5ksghvU9cc&s=7DqP_uuHvQE66J1COMrucpEgC-7OLrLUgns0uX3YMx4&e=> >>> --- >>> You received this message because you are subscribed to the Google >>> Groups "CAS Community" group. >>> To unsubscribe from this group and stop receiving emails from it, send >>> an email to cas-user+u...@apereo.org. >>> To view this discussion on the web visit >>> https://groups.google.com/a/apereo.org/d/msgid/cas-user/fe87891a-9508-42d3-a044-207b6f3e31ac%40apereo.org >>> <https://urldefense.proofpoint.com/v2/url?u=https-3A__groups.google.com_a_apereo.org_d_msgid_cas-2Duser_fe87891a-2D9508-2D42d3-2Da044-2D207b6f3e31ac-2540apereo.org-3Futm-5Fmedium-3Demail-26utm-5Fsource-3Dfooter&d=DwMFaQ&c=spdyCQlbcMzVK9-MvWb-WQ&r=auWoa16BPqAWqsx-0-lnCDVAVu-ZWi_vyIfKhfMtR_E&m=1NQvVTVdJCK9NIGnq1Hu4VihNWUDizTLL5ksghvU9cc&s=99q8VQxBgYGDTeCH_IUQdnvezTr3Fr7tKuCuDI4d9G0&e=> >>> . >>> >> >> -- > - Website: https://apereo.github.io/cas > <https://urldefense.proofpoint.com/v2/url?u=https-3A__apereo.github.io_cas&d=DwMFaQ&c=spdyCQlbcMzVK9-MvWb-WQ&r=auWoa16BPqAWqsx-0-lnCDVAVu-ZWi_vyIfKhfMtR_E&m=1NQvVTVdJCK9NIGnq1Hu4VihNWUDizTLL5ksghvU9cc&s=xfU5hfR8PFkctJFm6pNSmBc1075133j7pr8DZJpZC5U&e=> > - Gitter Chatroom: https://gitter.im/apereo/cas > <https://urldefense.proofpoint.com/v2/url?u=https-3A__gitter.im_apereo_cas&d=DwMFaQ&c=spdyCQlbcMzVK9-MvWb-WQ&r=auWoa16BPqAWqsx-0-lnCDVAVu-ZWi_vyIfKhfMtR_E&m=1NQvVTVdJCK9NIGnq1Hu4VihNWUDizTLL5ksghvU9cc&s=0MEoZhpsTob_GUKc8pv6g-azXdG7cUfX57kAQ_1lgmE&e=> > - List Guidelines: https://goo.gl/1VRrw7 > <https://urldefense.proofpoint.com/v2/url?u=https-3A__goo.gl_1VRrw7&d=DwMFaQ&c=spdyCQlbcMzVK9-MvWb-WQ&r=auWoa16BPqAWqsx-0-lnCDVAVu-ZWi_vyIfKhfMtR_E&m=1NQvVTVdJCK9NIGnq1Hu4VihNWUDizTLL5ksghvU9cc&s=LryUe6SCq-exVxdj7m1CkFawwFIVShRxkiud4VkAm1E&e=> > - Contributions: https://goo.gl/mh7qDG > <https://urldefense.proofpoint.com/v2/url?u=https-3A__goo.gl_mh7qDG&d=DwMFaQ&c=spdyCQlbcMzVK9-MvWb-WQ&r=auWoa16BPqAWqsx-0-lnCDVAVu-ZWi_vyIfKhfMtR_E&m=1NQvVTVdJCK9NIGnq1Hu4VihNWUDizTLL5ksghvU9cc&s=7DqP_uuHvQE66J1COMrucpEgC-7OLrLUgns0uX3YMx4&e=> > --- > You received this message because you are subscribed to the Google Groups > "CAS Community" group. > To unsubscribe from this group and stop receiving emails from it, send an > email to cas-user+unsubscr...@apereo.org. > To view this discussion on the web visit > https://groups.google.com/a/apereo.org/d/msgid/cas-user/acf02555-d016-446c-a162-3c6015c62c3f%40apereo.org > <https://urldefense.proofpoint.com/v2/url?u=https-3A__groups.google.com_a_apereo.org_d_msgid_cas-2Duser_acf02555-2Dd016-2D446c-2Da162-2D3c6015c62c3f-2540apereo.org-3Futm-5Fmedium-3Demail-26utm-5Fsource-3Dfooter&d=DwMFaQ&c=spdyCQlbcMzVK9-MvWb-WQ&r=auWoa16BPqAWqsx-0-lnCDVAVu-ZWi_vyIfKhfMtR_E&m=1NQvVTVdJCK9NIGnq1Hu4VihNWUDizTLL5ksghvU9cc&s=Nn-3LxxRPxMRGlEFv14sARR_40IzKsv-Bzkd-wey5Jo&e=> > . > -- - Website: https://apereo.github.io/cas - Gitter Chatroom: https://gitter.im/apereo/cas - List Guidelines: https://goo.gl/1VRrw7 - Contributions: https://goo.gl/mh7qDG --- You received this message because you are subscribed to the Google Groups "CAS Community" group. To unsubscribe from this group and stop receiving emails from it, send an email to cas-user+unsubscr...@apereo.org. To view this discussion on the web visit https://groups.google.com/a/apereo.org/d/msgid/cas-user/CA%2Bdxy9e4os%2Bvn2u%2BN0a0mv7Ls6W88y-%2BCuWMeXb56nHJMm0w6A%40mail.gmail.com.
