Sobhen, Throttling overview is here, https://apereo.github.io/cas/6.2.x/installation/Configuring-Authentication-Throttling.html, and properties are, https://apereo.github.io/cas/6.2.x/configuration/Configuration-Properties.html#authentication-throttling
This is my test config # this is a rate of failed attempts: threshold / rangeSeconds cas.authn.throttle.failure.threshold=1 cas.authn.throttle.failure.rangeSeconds=3 meaning no more than one login attempt within 3 seconds. This means that your cas properties should be more restrictive than ldap. The cas settings are simpler than LPPE so I did not pursue it. Ray On Thu, 2020-11-26 at 12:47 +0530, Sobhen C wrote: Notice: This message was sent from outside the University of Victoria email system. Please be cautious with links and sensitive information. Thank you Ray for a quick response. Yes, as you mentioned, my approach is the same that the application is developing from scratch. you have mentioned that "In our 3.5 version I used LPPE for throttling, now I use cas configuration.", I am actually stuck here only, can you put some light on this item. How the existing CAS configurations are used. If possible, could you please quote some properties which are relevant? Currently, I configured the following properties in css.properties. If the response is expired, then how can we hold on that? Do we need a customized configuration class for that? cas.authn.ldap[0].type= cas.authn.ldap[0].ldapUrl= cas.authn.ldap[0].baseDn= cas.authn.ldap[0].bindDn= cas.authn.ldap[0].bindCredential= With regards, Sobhen On Wed, Nov 25, 2020 at 11:21 PM Ray Bon <[email protected]<mailto:[email protected]>> wrote: Sobhen, A lot has changed between those two versions. The short answer; plan to start from scratch. Cas now has many more builtin capabilities. Some things that you had to implement may just need some configuration. In our 3.5 version I used LPPE for throttling, now I use cas configuration. Password management is here, https://apereo.github.io/cas/6.2.x/password_management/Password-Management.html Ray On Wed, 2020-11-25 at 02:59 -0800, Sobhen C wrote: Notice: This message was sent from outside the University of Victoria email system. Please be cautious with links and sensitive information. I was trying to upgrade the CAS application from version 3.5.4 into 6.2.2. I went through the 6.2.2 password policy. Now, I am wondering if CAS 6.2 supports Ippe configurations. In the existing application, all the configurations are mentioned in the lppe.configuration.xml file. But, in the latest version, I didn't find a way to mention all the configuration which was there in the lppe.configuration.xml. Please provide some guidance on this? How we can use the similar configurations which we were using in the existing CAS 3.5.4 version. Also, can anyone provide some guidance on this upgrade? 1. Do we need to rewrite the jsp pages into thymeleaf? 2. how to write customized user authentication using LDAP? 3. Currently, we are using web flow, are we able reuse those web flow configurations? With regards, Sobhen -- Ray Bon Programmer Analyst Development Services, University Systems 2507218831 | CLE 019 | [email protected]<mailto:[email protected]> I respectfully acknowledge that my place of work is located within the ancestral, traditional and unceded territory of the Songhees, Esquimalt and WSÁNEĆ Nations. -- - Website: https://apereo.github.io/cas - Gitter Chatroom: https://gitter.im/apereo/cas - List Guidelines: https://goo.gl/1VRrw7 - Contributions: https://goo.gl/mh7qDG --- You received this message because you are subscribed to the Google Groups "CAS Community" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]<mailto:[email protected]>. To view this discussion on the web visit https://groups.google.com/a/apereo.org/d/msgid/cas-user/dbf712988401f650b1f531fef708b19b74a68231.camel%40uvic.ca<https://groups.google.com/a/apereo.org/d/msgid/cas-user/dbf712988401f650b1f531fef708b19b74a68231.camel%40uvic.ca?utm_medium=email&utm_source=footer>. -- Ray Bon Programmer Analyst Development Services, University Systems 2507218831 | CLE 019 | [email protected]<mailto:[email protected]> I respectfully acknowledge that my place of work is located within the ancestral, traditional and unceded territory of the Songhees, Esquimalt and WSÁNEĆ Nations. -- - Website: https://apereo.github.io/cas - Gitter Chatroom: https://gitter.im/apereo/cas - List Guidelines: https://goo.gl/1VRrw7 - Contributions: https://goo.gl/mh7qDG --- You received this message because you are subscribed to the Google Groups "CAS Community" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To view this discussion on the web visit https://groups.google.com/a/apereo.org/d/msgid/cas-user/88b4aec019efefaeb1759640f4e250a1b4d167da.camel%40uvic.ca.
