Please tell me how to unprotect? In cas.properties i have to set endpoints.status.discovery.enabled = true ..sensitive = false
Sorry for my questions. Thank you Ray. Sent from my iPhone > On 10 Apr 2019, at 07.05, Ray Bon <r...@uvic.ca> wrote: > > Fahmi, > > It looks like /cas/status/discovery is protected by cas and it redirects to > cas/login (status code 302). > Should the discovery page be protected? > > Ray > >> On Tue, 2019-04-09 at 16:43 -0700, Fahmi L. Ramdhani wrote: >> I tried accessing the result curl like this: >> >> curl -v https://cas.example.com:8443/cas/status/discovery >> * Trying 2xx.60.112.9... >> * Connected to cas.example.com (2xx.60.112.9) port 8443 (#0) >> * found 148 certificates in /etc/ssl/certs/ca-certificates.crt >> * found 592 certificates in /etc/ssl/certs >> * ALPN, offering http/1.1 >> * SSL connection using TLS1.2 / ECDHE_RSA_AES_128_GCM_SHA256 >> * server certificate verification OK >> * server certificate status verification SKIPPED >> * common name: cas.example.com (matched) >> * server certificate expiration date OK >> * server certificate activation date OK >> * certificate public key: RSA >> * certificate version: #3 >> * subject: CN=cas.example.com >> * start date: Wed, 03 Apr 2019 09:32:48 GMT >> * expire date: Tue, 02 Jul 2019 09:32:48 GMT >> * issuer: C=US,O=XXXXXXXXXXX,CN=XXXXXXXXXXXXXX >> * compression: NULL >> * ALPN, server did not agree to a protocol >> > GET /cas/status/discovery HTTP/1.1 >> > Host: cas.example.com:8443 >> > User-Agent: curl/7.47.0 >> > Accept: */* >> > >> < HTTP/1.1 302 >> < Cache-Control: no-cache, no-store, max-age=0, must-revalidate >> < Pragma: no-cache >> < Expires: 0 >> < Strict-Transport-Security: max-age=15768000 ; includeSubDomains >> < X-Content-Type-Options: nosniff >> < X-Frame-Options: DENY >> < X-XSS-Protection: 1; mode=block >> < Set-Cookie: JSESSIONID=AECBB7BF899FAFB0B707CE228ECC19EC; Path=/cas; >> Secure; HttpOnly >> < Location: >> https://cas.example.com:8443/cas/login?service=https%3A%2F%2Fcas.example.com%3A8443%2Fcas%2Fstatus%2Fdiscovery >> < Transfer-Encoding: chunked >> < Date: Tue, 09 Apr 2019 23:34:01 GMT >> < >> * Connection #0 to host cas.example.com left intact >> >> Can anyone help please? > -- > - Website: https://apereo.github.io/cas > - Gitter Chatroom: https://gitter.im/apereo/cas > - List Guidelines: https://goo.gl/1VRrw7 > - Contributions: https://goo.gl/mh7qDG > --- > You received this message because you are subscribed to the Google Groups > "CAS Community" group. > To unsubscribe from this group and stop receiving emails from it, send an > email to cas-user+unsubscr...@apereo.org. > To view this discussion on the web visit > https://groups.google.com/a/apereo.org/d/msgid/cas-user/6865637d5002e54d38c2e2e619ff06ec63e45f0a.camel%40uvic.ca. -- - Website: https://apereo.github.io/cas - Gitter Chatroom: https://gitter.im/apereo/cas - List Guidelines: https://goo.gl/1VRrw7 - Contributions: https://goo.gl/mh7qDG --- You received this message because you are subscribed to the Google Groups "CAS Community" group. To unsubscribe from this group and stop receiving emails from it, send an email to cas-user+unsubscr...@apereo.org. To view this discussion on the web visit https://groups.google.com/a/apereo.org/d/msgid/cas-user/C1E5AECD-202E-4422-9637-76BC09FBC661%40gmail.com.
