Thank You Ray, I've managed to make it work finally. Now I need to set up cas-management to write json services. A long way ahead of me, still a lot of work to do. Bartosz Nitkiewicz
12 mar 2021 17:26:19 Ray Bon <[email protected]>: > Bartosz, > > There is a file etc/cas/config/users.json to which you add authorized users. > > You would only need to include ldap dependency if you wanted to look up your > authorized users there, instead of the json file. We use the file, so I do > not know how to set up an ldap lookup. > > Ray > > On Fri, 2021-03-12 at 02:40 -0800, Bartosz Nitkiewicz wrote: >> *Notice: This message was sent from outside the University of Victoria email >> system. Please be cautious with links and sensitive information.* >> >> I've done it. But now I have >> >> [2021-03-12 11:38:12] [info] 2021-03-12 11:38:12,028 WARN >> [org.apereo.cas.mgmt.authz.CasRoleBasedAuthorizer] - <Unable to authorize >> access, since the authenticated profile [#CasProfile# | id: 11111 | >> attributes: {credentialType=UsernamePasswordCredential, isFromNewLogin=true, >> authenticationDate=2021-03-12T10:38:08.587639Z, authenticationMethod=test, >> successfulAuthenticationHandlers=test, >> longTermAuthenticationRequestTokenUsed=false} | roles: [] | permissions: [] >> | isRemembered: false | clientName: CasClient | linkedId: null |] does not >> contain any required roles> >> >> >> Should cas-management app be built with ldap dependency? >> czwartek, 11 marca 2021 o 16:50:15 UTC+1 Ray Bon napisał(a): >>> Bartosz, >>> >>> Are you using the overlay, https://github.com/apereo/cas-management-overlay? >>> >>> The properties file is etc/cas/config/management.properties. >>> >>> Start with cas as the auth source. This way you can log in without any >>> other configuration. >>> >>> Then copy the properties for the service registry from cas.properties to >>> the above management.properties. No need to change any properties. >>> >>> Ray >>> >>> On Wed, 2021-03-10 at 23:05 -0800, Bartosz Nitkiewicz wrote: >>>> *Notice: This message was sent from outside the University of Victoria >>>> email system. Please be cautious with links and sensitive information.* >>>> >>>> Ray, >>>> Thank you for replay. But what do you mean /my management config/? Which >>>> file it is? >>>> >>>> So if I want to authorize access to cas-management through LDAP I should >>>> built this dependency? >>>> I have placed >>>> >>>> dependencies { >>>> // Other CAS Management dependencies/modules may be listed here... >>>> implementation >>>> "org.apereo.cas:cas-server-support-ldap:${casMgmtServerVersion}" >>>> implementation >>>> "org.apereo.cas:cas-server-support-json-service-registry:${casMgmtServerVersion}" >>>> implementation >>>> "org.apereo.cas:cas-mgmt-config-authz-ldap:${casMgmtServerVersion}" >>>> } >>>> >>>> in build.gradle, is it ok? >>>> środa, 10 marca 2021 o 23:00:47 UTC+1 Ray Bon napisał(a): >>>>> Bartosz, >>>>> >>>>> I assume you are using a recent version of cas-management. >>>>> The log message says that you are trying to set a property but >>>>> cas-management does not know how to set it. >>>>> >>>>> I think the properties are being changed to use the same values as cas >>>>> (it uses the same config libraries). >>>>> Properties will have the same name as in cas. >>>>> I have this in my management config: >>>>> >>>>> # org.ldaptive.provider.unboundid.UnboundIDProvider is default >>>>> # >>>>> cas.serviceRegistry.ldap.providerClass=org.ldaptive.provider.unboundid.UnboundIDProvider >>>>> >>>>> It has been months since I worked on this but you may not need to set >>>>> this particular field. >>>>> >>>>> Some properties will be mgmt.something... and some will be >>>>> cas.something... >>>>> If you can find the property in the cas docs, >>>>> https://apereo.github.io/cas/6.3.x/configuration/Configuration-Properties.html, >>>>> try the cas.something first. >>>>> >>>>> Ray >>>>> >>>>> On Wed, 2021-03-10 at 03:18 -0800, Bartosz Nitkiewicz wrote: >>>>>> … >>>>>> … >>>>>> … >>>>> -- >>>>> >>>>> Ray Bon >>>>> Programmer Analyst >>>>> Development Services, University Systems >>>>> 2507218831[tel:(250)%20721-8831] | CLE 019 | [email protected] >>>>> >>>>> I respectfully acknowledge that my place of work is located within the >>>>> ancestral, traditional and unceded territory of the Songhees, Esquimalt >>>>> and WSÁNEĆ Nations. >>>>> >>> -- >>> >>> Ray Bon >>> Programmer Analyst >>> Development Services, University Systems >>> 2507218831[tel:(250)%20721-8831] | CLE 019 | [email protected] >>> >>> I respectfully acknowledge that my place of work is located within the >>> ancestral, traditional and unceded territory of the Songhees, Esquimalt and >>> WSÁNEĆ Nations. >>> > -- > Ray Bon > Programmer Analyst > Development Services, University Systems > 2507218831 | CLE 019 | [email protected] > > I respectfully acknowledge that my place of work is located within the > ancestral, traditional and unceded territory of the Songhees, Esquimalt and > WSÁNEĆ Nations. > -- > - Website: https://apereo.github.io/cas > - Gitter Chatroom: https://gitter.im/apereo/cas > - List Guidelines: https://goo.gl/1VRrw7 > - Contributions: https://goo.gl/mh7qDG > --- > You received this message because you are subscribed to the Google Groups > "CAS Community" group. > To unsubscribe from this group and stop receiving emails from it, send an > email to [email protected]. > To view this discussion on the web visit > https://groups.google.com/a/apereo.org/d/msgid/cas-user/a967502d6637daef6f7e0d087c85e519a17c55d4.camel%40uvic.ca[https://groups.google.com/a/apereo.org/d/msgid/cas-user/a967502d6637daef6f7e0d087c85e519a17c55d4.camel%40uvic.ca?utm_medium=email&utm_source=footer]. -- - Website: https://apereo.github.io/cas - Gitter Chatroom: https://gitter.im/apereo/cas - List Guidelines: https://goo.gl/1VRrw7 - Contributions: https://goo.gl/mh7qDG --- You received this message because you are subscribed to the Google Groups "CAS Community" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To view this discussion on the web visit https://groups.google.com/a/apereo.org/d/msgid/cas-user/67e56c9e-447e-4e8a-8450-e260c5d6396e%40nitkiewicz.eu.
