I thought I'd just post an update on this. I tried this again with 6.4.4. Since my CAS server is not acting as a SAML IdP, I removed all saml-idp modules from my build which seems to have resolved the issue.
Noelette On Monday, November 15, 2021 at 7:01:30 AM UTC-7 Noelette Stout wrote: > At least I feel less crazy now :-) I've been going nuts wondering what > changed in the configs (that I haven't touched) with the upgrade. I've gone > through double-checking syntax on everything. > > Thanks for confirming, Bill. > > Noelette > > On Monday, November 15, 2021 at 6:52:58 AM UTC-7 William Jojo wrote: > >> Noelette, >> >> Confirmed. I am doing non-autoforwarding SAML2 delegation to Azure. I >> have nginx proxy in front of embedded Tomcat app.war. Works in 6.3.7.1, >> borked in 6.4.2. Double-checked all of my cas.properties, nothing amiss. >> >> In 6.3.7.1 (working): >> >> 2021-11-15 07:04:50,891 DEBUG >> [org.apereo.cas.web.DelegatedClientWebflowManager] - <Built ticket >> properties [{method=, theme=, locale=en}]> >> 2021-11-15 07:04:50,907 DEBUG >> [org.apereo.cas.web.DelegatedClientWebflowManager] - <Storing delegated >> authentication request ticket [TST-1-dWlIqP8W8O7dFxCdIVvxFZ7YM2xj-dai] for >> service [null] with properties [{theme=, targetService=null, method=, >> locale=en, service=null}]> >> 2021-11-15 07:04:50,914 DEBUG >> [org.apereo.cas.ticket.registry.AbstractMapBasedTicketRegistry] - <Added >> ticket [TST-1-dWlIqP8W8O7dFxCdIVvxFZ7YM2xj-dai] to registry.> >> 2021-11-15 07:04:50,921 DEBUG >> [org.apereo.cas.ticket.registry.AbstractMapBasedTicketRegistry] - <Ticket >> [TST-396f9908-6411-4a39-9318-53da7953330a] could not be found> >> 2021-11-15 07:04:50,922 DEBUG >> [org.apereo.cas.AbstractCentralAuthenticationService] - <Ticket >> [TST-396f9908-6411-4a39-9318-53da7953330a] by type [TransientSessionTicket] >> cannot be found in the ticket registry.> >> 2021-11-15 07:04:50,923 DEBUG >> [org.apereo.cas.ticket.registry.AbstractMapBasedTicketRegistry] - <Added >> ticket [TST-396f9908-6411-4a39-9318-53da7953330a] to registry.> >> 2021-11-15 07:04:51,141 DEBUG >> [org.apereo.cas.ticket.registry.AbstractMapBasedTicketRegistry] - <Added >> ticket [TST-396f9908-6411-4a39-9318-53da7953330a] to registry.> >> 2021-11-15 07:04:51,352 DEBUG >> [org.apereo.cas.web.BaseDelegatedAuthenticationController] - <Determined >> final redirect action for client [#SAML2Client# | name: HVCC Login - POC | >> callbackUrl: https://casdev.hvcc.edu/cas/login | urlResolver: >> org.pac4j.core.http.url.DefaultUrlResolver@3538d8d6 | callbackUrlResolver: >> org.pac4j.core.http.callback.QueryParameterCallbackUrlResolver@6785df10 | >> ajaxRequestResolver: >> org.pac4j.core.http.ajax.DefaultAjaxRequestResolver@6e3705e6 | >> redirectionActionBuilder: >> org.pac4j.saml.redirect.SAML2RedirectionActionBuilder@140b4e00 | >> credentialsExtractor: >> org.pac4j.saml.credentials.extractor.SAML2CredentialsExtractor@169e989c | >> authenticator: >> org.pac4j.saml.credentials.authenticator.SAML2Authenticator@65930cf1 | >> profileCreator: >> org.pac4j.core.profile.creator.AuthenticatorProfileCreator@144440f5 | >> logoutActionBuilder: >> org.pac4j.saml.logout.SAML2LogoutActionBuilder@335d3d90 | >> authorizationGenerators: [] |] as [#HttpAction# | code: 302 |]> >> >> >> In 6.4.2 (borked): >> >> 2021-11-15 06:56:22,281 DEBUG >> [org.apereo.cas.support.pac4j.authentication.DefaultDelegatedClientFactory] >> - <Created delegated client [#SAML2Client# | name: HVCC Login - POC | >> callbackUrl: https://casdev.hvcc.edu/cas/login | urlResolver: null | >> callbackUrlResolver: >> org.pac4j.core.http.callback.QueryParameterCallbackUrlResolver@672e8871 | >> ajaxRequestResolver: null | redirectionActionBuilder: null | >> credentialsExtractor: null | authenticator: null | profileCreator: >> org.pac4j.core.profile.creator.AuthenticatorProfileCreator@34e68840 | >> logoutActionBuilder: org.pac4j.core.logout.NoLogoutActionBuilder@510203de | >> authorizationGenerators: [] | checkAuthenticationAttempt: true |]> >> 2021-11-15 06:56:22,281 DEBUG >> [org.apereo.cas.support.pac4j.RefreshableDelegatedClients] - <The following >> clients are built: [[#SAML2Client# | name: HVCC Login - POC | callbackUrl: >> https://casdev.hvcc.edu/cas/login | urlResolver: null | >> callbackUrlResolver: >> org.pac4j.core.http.callback.QueryParameterCallbackUrlResolver@672e8871 | >> ajaxRequestResolver: null | redirectionActionBuilder: null | >> credentialsExtractor: null | authenticator: null | profileCreator: >> org.pac4j.core.profile.creator.AuthenticatorProfileCreator@34e68840 | >> logoutActionBuilder: org.pac4j.core.logout.NoLogoutActionBuilder@510203de | >> authorizationGenerators: [] | checkAuthenticationAttempt: true |]]> >> 2021-11-15 06:56:22,767 DEBUG >> [org.apereo.cas.web.DefaultDelegatedClientAuthenticationWebflowManager] - >> <Built ticket properties [{method=, theme=, locale=}]> >> 2021-11-15 06:56:22,788 DEBUG >> [org.apereo.cas.web.DefaultDelegatedClientAuthenticationWebflowManager] - >> <Storing delegated authentication request ticket >> [TST-1-oa-QpQisQzARmzQPQIaGG-CTDvjlXGnw] for service [null] with properties >> [{theme=, targetService=null, method=, locale=, service=null}]> >> 2021-11-15 06:56:22,797 DEBUG >> [org.apereo.cas.ticket.registry.AbstractMapBasedTicketRegistry] - <Added >> ticket [TST-1-oa-QpQisQzARmzQPQIaGG-CTDvjlXGnw] to registry.> >> 2021-11-15 06:56:22,805 DEBUG >> [org.apereo.cas.ticket.registry.AbstractMapBasedTicketRegistry] - <Ticket >> [TST-396f9908-6411-4a39-9318-53da7953330a] could not be found> >> 2021-11-15 06:56:22,805 DEBUG >> [org.apereo.cas.AbstractCentralAuthenticationService] - <Ticket >> [TST-396f9908-6411-4a39-9318-53da7953330a] by type [TransientSessionTicket] >> cannot be found in the ticket registry.> >> 2021-11-15 06:56:22,807 DEBUG >> [org.apereo.cas.ticket.registry.AbstractMapBasedTicketRegistry] - <Added >> ticket [TST-396f9908-6411-4a39-9318-53da7953330a] to registry.> >> 2021-11-15 06:56:22,811 WARN >> [org.apereo.cas.web.DefaultDelegatedAuthenticationNavigationController] - >> <Authentication request was denied from the provider HVCC Login - POC> >> java.lang.IllegalArgumentException: SAML request could not be determined >> from session store >> at >> org.apereo.cas.support.saml.web.idp.delegation.SamlIdPDelegatedClientAuthenticationRequestCustomizer.lambda$customize$0(SamlIdPDelegatedClientAuthenticationRequestCustomizer.java:42) >> >> ~[cas-server-support-saml-idp-web-6.4.2.jar!/:6.4.2] >> >> Looks like ticket mgmt is happening out of order from the debugs. But I >> am guessing... >> >> Bill >> >> On Monday, November 8, 2021 at 2:50:24 PM UTC-5 stou...@isu.edu wrote: >> >>> I had delegated authentication working with CAS 6.3.7.1, but after I >>> upgraded to 6.4.2 I am getting the following error. >>> >>> 2021-11-08 12:36:40,578 DEBUG >>> [org.pac4j.core.context.session.JEESessionStore] - <createSession: false, >>> retrieved session: null> >>> 2021-11-08 12:36:40,578 DEBUG >>> [org.pac4j.core.context.session.JEESessionStore] - <Can't get value for >>> key: SAMLRequest, no session available> >>> 2021-11-08 12:36:40,594 WARN >>> [org.apereo.cas.web.DefaultDelegatedAuthenticationNavigationController] - >>> <Authentication request was denied from the provider Fischer-SSO> >>> java.lang.IllegalArgumentException: SAML request could not be determined >>> from session store >>> at >>> org.apereo.cas.support.saml.web.idp.delegation.SamlIdPDelegatedClientAuthenticationRequestCustomizer.lambda$customize$0(SamlIdPDelegatedClientAuthenticationRequestCustomizer.java:42) >>> >>> ~[cas-server-support-saml-idp-web-6.4.2.jar:6.4.2] >>> at java.util.Optional.orElseThrow(Optional.java:408) ~[?:?] >>> at >>> org.apereo.cas.support.saml.web.idp.delegation.SamlIdPDelegatedClientAuthenticationRequestCustomizer.customize(SamlIdPDelegatedClientAuthenticationRequestCustomizer.java:42) >>> >>> ~[cas-server-support-saml-idp-web-6.4.2.jar:6.4.2] >>> at >>> org.apereo.cas.web.BaseDelegatedAuthenticationController.lambda$getRedirectionAction$1(BaseDelegatedAuthenticationController.java:81) >>> >>> ~[cas-server-support-pac4j-webflow-6.4.2.jar:6.4.2] >>> at >>> java.util.stream.ForEachOps$ForEachOp$OfRef.accept(ForEachOps.java:183) >>> ~[?:?] >>> at >>> java.util.stream.ReferencePipeline$2$1.accept(ReferencePipeline.java:177) >>> ~[?:?] >>> at >>> java.util.stream.SortedOps$SizedRefSortingSink.end(SortedOps.java:357) >>> ~[?:?] >>> at java.util.stream.AbstractPipeline.copyInto(AbstractPipeline.java:485) >>> ~[?:?] >>> at >>> java.util.stream.AbstractPipeline.wrapAndCopyInto(AbstractPipeline.java:474) >>> >>> ~[?:?] >>> at >>> java.util.stream.ForEachOps$ForEachOp.evaluateSequential(ForEachOps.java:150) >>> >>> ~[?:?] >>> at >>> java.util.stream.ForEachOps$ForEachOp$OfRef.evaluateSequential(ForEachOps.java:173) >>> >>> ~[?:?] >>> at java.util.stream.AbstractPipeline.evaluate(AbstractPipeline.java:234) >>> ~[?:?] >>> at >>> java.util.stream.ReferencePipeline.forEach(ReferencePipeline.java:497) >>> ~[?:?] >>> at >>> org.apereo.cas.web.BaseDelegatedAuthenticationController.getRedirectionAction(BaseDelegatedAuthenticationController.java:81) >>> >>> ~[cas-server-support-pac4j-webflow-6.4.2.jar:6.4.2] >>> at >>> org.apereo.cas.web.BaseDelegatedAuthenticationController.getResultingView(BaseDelegatedAuthenticationController.java:134) >>> >>> ~[cas-server-support-pac4j-webflow-6.4.2.jar:6.4.2] >>> at >>> org.apereo.cas.web.DefaultDelegatedAuthenticationNavigationController.redirectToProvider(DefaultDelegatedAuthenticationNavigationController.java:63) >>> >>> ~[cas-server-support-pac4j-webflow-6.4.2.jar:6.4.2] >>> at jdk.internal.reflect.NativeMethodAccessorImpl.invoke0(Native Method) >>> ~[?:?] >>> at >>> jdk.internal.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:62) >>> >>> ~[?:?] >>> at >>> jdk.internal.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43) >>> >>> ~[?:?] >>> at java.lang.reflect.Method.invoke(Method.java:566) ~[?:?] >>> at >>> org.springframework.web.method.support.InvocableHandlerMethod.doInvoke(InvocableHandlerMethod.java:197) >>> >>> ~[spring-web-5.3.9.jar:5.3.9] >>> at >>> org.springframework.web.method.support.InvocableHandlerMethod.invokeForRequest(InvocableHandlerMethod.java:141) >>> >>> ~[spring-web-5.3.9.jar:5.3.9] >>> at >>> org.springframework.web.servlet.mvc.method.annotation.ServletInvocableHandlerMethod.invokeAndHandle(ServletInvocableHandlerMethod.java:106) >>> >>> ~[spring-webmvc-5.3.9.jar:5.3.9] >>> at >>> org.springframework.web.servlet.mvc.method.annotation.RequestMappingHandlerAdapter.invokeHandlerMethod(RequestMappingHandlerAdapter.java:895) >>> >>> ~[spring-webmvc-5.3.9.jar:5.3.9] >>> at >>> org.springframework.web.servlet.mvc.method.annotation.RequestMappingHandlerAdapter.handleInternal(RequestMappingHandlerAdapter.java:808) >>> >>> ~[spring-webmvc-5.3.9.jar:5.3.9] >>> at >>> org.springframework.web.servlet.mvc.method.AbstractHandlerMethodAdapter.handle(AbstractHandlerMethodAdapter.java:87) >>> >>> ~[spring-webmvc-5.3.9.jar:5.3.9] >>> at >>> org.springframework.web.servlet.DispatcherServlet.doDispatch(DispatcherServlet.java:1064) >>> >>> ~[spring-webmvc-5.3.9.jar:5.3.9] >>> at >>> org.springframework.web.servlet.DispatcherServlet.doService(DispatcherServlet.java:963) >>> >>> ~[spring-webmvc-5.3.9.jar:5.3.9] >>> at >>> org.springframework.web.servlet.FrameworkServlet.processRequest(FrameworkServlet.java:1006) >>> >>> ~[spring-webmvc-5.3.9.jar:5.3.9] >>> at >>> org.springframework.web.servlet.FrameworkServlet.doGet(FrameworkServlet.java:898) >>> >>> ~[spring-webmvc-5.3.9.jar:5.3.9] >>> at javax.servlet.http.HttpServlet.service(HttpServlet.java:655) >>> ~[servlet-api.jar:4.0.FR] >>> at >>> org.springframework.web.servlet.FrameworkServlet.service(FrameworkServlet.java:883) >>> >>> ~[spring-webmvc-5.3.9.jar:5.3.9] >>> at javax.servlet.http.HttpServlet.service(HttpServlet.java:764) >>> ~[servlet-api.jar:4.0.FR] >>> at >>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:227) >>> >>> ~[catalina.jar:9.0.54] >>> at >>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:162) >>> >>> ~[catalina.jar:9.0.54] >>> at >>> org.apache.tomcat.websocket.server.WsFilter.doFilter(WsFilter.java:53) >>> ~[tomcat-websocket.jar:9.0.54] >>> at >>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:189) >>> >>> ~[catalina.jar:9.0.54] >>> at >>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:162) >>> >>> ~[catalina.jar:9.0.54] >>> at >>> org.apereo.cas.web.support.AuthenticationCredentialsThreadLocalBinderClearingFilter.doFilter(AuthenticationCredentialsThreadLocalBinderClearingFilter.java:28) >>> >>> ~[cas-server-core-web-api-6.4.2.jar:6.4.2] >>> at >>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:189) >>> >>> ~[catalina.jar:9.0.54] >>> at >>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:162) >>> >>> ~[catalina.jar:9.0.54] >>> at >>> org.apereo.cas.web.support.filters.RequestParameterPolicyEnforcementFilter.doFilter(RequestParameterPolicyEnforcementFilter.java:401) >>> >>> ~[cas-server-core-web-api-6.4.2.jar:6.4.2] >>> at >>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:189) >>> >>> ~[catalina.jar:9.0.54] >>> at >>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:162) >>> >>> ~[catalina.jar:9.0.54] >>> at >>> org.apereo.cas.web.support.filters.ResponseHeadersEnforcementFilter.doFilter(ResponseHeadersEnforcementFilter.java:200) >>> >>> ~[cas-server-core-web-api-6.4.2.jar:6.4.2] >>> at >>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:189) >>> >>> ~[catalina.jar:9.0.54] >>> at >>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:162) >>> >>> ~[catalina.jar:9.0.54] >>> at >>> org.apereo.cas.web.support.filters.AddResponseHeadersFilter.doFilter(AddResponseHeadersFilter.java:62) >>> >>> ~[cas-server-core-web-api-6.4.2.jar:6.4.2] >>> at >>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:189) >>> >>> ~[catalina.jar:9.0.54] >>> at >>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:162) >>> >>> ~[catalina.jar:9.0.54] >>> at >>> org.springframework.boot.actuate.web.trace.servlet.HttpTraceFilter.doFilterInternal(HttpTraceFilter.java:88) >>> >>> ~[spring-boot-actuator-2.5.4.jar:2.5.4] >>> at >>> org.springframework.web.filter.OncePerRequestFilter.doFilter(OncePerRequestFilter.java:119) >>> >>> ~[spring-web-5.3.9.jar:5.3.9] >>> at >>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:189) >>> >>> ~[catalina.jar:9.0.54] >>> at >>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:162) >>> >>> ~[catalina.jar:9.0.54] >>> at >>> org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:327) >>> >>> ~[spring-security-web-5.5.2.jar:5.5.2] >>> at >>> org.springframework.security.web.access.intercept.FilterSecurityInterceptor.invoke(FilterSecurityInterceptor.java:115) >>> >>> ~[spring-security-web-5.5.2.jar:5.5.2] >>> at >>> org.springframework.security.web.access.intercept.FilterSecurityInterceptor.doFilter(FilterSecurityInterceptor.java:81) >>> >>> ~[spring-security-web-5.5.2.jar:5.5.2] >>> at >>> org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:336) >>> >>> ~[spring-security-web-5.5.2.jar:5.5.2] >>> at >>> org.springframework.security.web.access.ExceptionTranslationFilter.doFilter(ExceptionTranslationFilter.java:121) >>> >>> ~[spring-security-web-5.5.2.jar:5.5.2] >>> at >>> org.springframework.security.web.access.ExceptionTranslationFilter.doFilter(ExceptionTranslationFilter.java:115) >>> >>> ~[spring-security-web-5.5.2.jar:5.5.2] >>> at >>> org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:336) >>> >>> ~[spring-security-web-5.5.2.jar:5.5.2] >>> at >>> org.springframework.security.web.session.SessionManagementFilter.doFilter(SessionManagementFilter.java:126) >>> >>> ~[spring-security-web-5.5.2.jar:5.5.2] >>> at >>> org.springframework.security.web.session.SessionManagementFilter.doFilter(SessionManagementFilter.java:81) >>> >>> ~[spring-security-web-5.5.2.jar:5.5.2] >>> at >>> org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:336) >>> >>> ~[spring-security-web-5.5.2.jar:5.5.2] >>> at >>> org.springframework.security.web.authentication.AnonymousAuthenticationFilter.doFilter(AnonymousAuthenticationFilter.java:105) >>> >>> ~[spring-security-web-5.5.2.jar:5.5.2] >>> at >>> org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:336) >>> >>> ~[spring-security-web-5.5.2.jar:5.5.2] >>> at >>> org.springframework.security.web.servletapi.SecurityContextHolderAwareRequestFilter.doFilter(SecurityContextHolderAwareRequestFilter.java:149) >>> >>> ~[spring-security-web-5.5.2.jar:5.5.2] >>> at >>> org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:336) >>> >>> ~[spring-security-web-5.5.2.jar:5.5.2] >>> at >>> org.springframework.security.web.savedrequest.RequestCacheAwareFilter.doFilter(RequestCacheAwareFilter.java:63) >>> >>> ~[spring-security-web-5.5.2.jar:5.5.2] >>> at >>> org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:336) >>> >>> ~[spring-security-web-5.5.2.jar:5.5.2] >>> at >>> org.springframework.security.web.context.SecurityContextPersistenceFilter.doFilter(SecurityContextPersistenceFilter.java:110) >>> >>> ~[spring-security-web-5.5.2.jar:5.5.2] >>> at >>> org.springframework.security.web.context.SecurityContextPersistenceFilter.doFilter(SecurityContextPersistenceFilter.java:80) >>> >>> ~[spring-security-web-5.5.2.jar:5.5.2] >>> at >>> org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:336) >>> >>> ~[spring-security-web-5.5.2.jar:5.5.2] >>> at >>> org.springframework.security.web.context.request.async.WebAsyncManagerIntegrationFilter.doFilterInternal(WebAsyncManagerIntegrationFilter.java:55) >>> >>> ~[spring-security-web-5.5.2.jar:5.5.2] >>> at >>> org.springframework.web.filter.OncePerRequestFilter.doFilter(OncePerRequestFilter.java:119) >>> >>> ~[spring-web-5.3.9.jar:5.3.9] >>> at >>> org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:336) >>> >>> ~[spring-security-web-5.5.2.jar:5.5.2] >>> at >>> org.springframework.security.web.access.channel.ChannelProcessingFilter.doFilter(ChannelProcessingFilter.java:133) >>> >>> ~[spring-security-web-5.5.2.jar:5.5.2] >>> at >>> org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:336) >>> >>> ~[spring-security-web-5.5.2.jar:5.5.2] >>> at >>> org.springframework.security.web.FilterChainProxy.doFilterInternal(FilterChainProxy.java:211) >>> >>> ~[spring-security-web-5.5.2.jar:5.5.2] >>> at >>> org.springframework.security.web.FilterChainProxy.doFilter(FilterChainProxy.java:183) >>> >>> ~[spring-security-web-5.5.2.jar:5.5.2] >>> at >>> org.springframework.web.filter.DelegatingFilterProxy.invokeDelegate(DelegatingFilterProxy.java:358) >>> >>> ~[spring-web-5.3.9.jar:5.3.9] >>> at >>> org.springframework.web.filter.DelegatingFilterProxy.doFilter(DelegatingFilterProxy.java:271) >>> >>> ~[spring-web-5.3.9.jar:5.3.9] >>> at >>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:189) >>> >>> ~[catalina.jar:9.0.54] >>> at >>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:162) >>> >>> ~[catalina.jar:9.0.54] >>> at >>> org.springframework.web.filter.RequestContextFilter.doFilterInternal(RequestContextFilter.java:100) >>> >>> ~[spring-web-5.3.9.jar:5.3.9] >>> at >>> org.springframework.web.filter.OncePerRequestFilter.doFilter(OncePerRequestFilter.java:119) >>> >>> ~[spring-web-5.3.9.jar:5.3.9] >>> at >>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:189) >>> >>> ~[catalina.jar:9.0.54] >>> at >>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:162) >>> >>> ~[catalina.jar:9.0.54] >>> at >>> org.springframework.web.filter.FormContentFilter.doFilterInternal(FormContentFilter.java:93) >>> >>> ~[spring-web-5.3.9.jar:5.3.9] >>> at >>> org.springframework.web.filter.OncePerRequestFilter.doFilter(OncePerRequestFilter.java:119) >>> >>> ~[spring-web-5.3.9.jar:5.3.9] >>> at >>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:189) >>> >>> ~[catalina.jar:9.0.54] >>> at >>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:162) >>> >>> ~[catalina.jar:9.0.54] >>> at >>> org.springframework.boot.actuate.metrics.web.servlet.WebMvcMetricsFilter.doFilterInternal(WebMvcMetricsFilter.java:96) >>> >>> ~[spring-boot-actuator-2.5.4.jar:2.5.4] >>> at >>> org.springframework.web.filter.OncePerRequestFilter.doFilter(OncePerRequestFilter.java:119) >>> >>> ~[spring-web-5.3.9.jar:5.3.9] >>> at >>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:189) >>> >>> ~[catalina.jar:9.0.54] >>> at >>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:162) >>> >>> ~[catalina.jar:9.0.54] >>> at >>> org.apereo.cas.logging.web.ThreadContextMDCServletFilter.doFilter(ThreadContextMDCServletFilter.java:99) >>> >>> ~[cas-server-core-logging-6.4.2.jar:6.4.2] >>> at >>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:189) >>> >>> ~[catalina.jar:9.0.54] >>> at >>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:162) >>> >>> ~[catalina.jar:9.0.54] >>> at >>> org.apereo.inspektr.common.web.ClientInfoThreadLocalFilter.doFilter(ClientInfoThreadLocalFilter.java:66) >>> >>> ~[inspektr-common-1.8.16.GA.jar:1.8.16.GA] >>> at >>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:189) >>> >>> ~[catalina.jar:9.0.54] >>> at >>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:162) >>> >>> ~[catalina.jar:9.0.54] >>> at >>> org.springframework.boot.web.servlet.support.ErrorPageFilter.doFilter(ErrorPageFilter.java:126) >>> >>> ~[spring-boot-2.5.4.jar:2.5.4] >>> at >>> org.springframework.boot.web.servlet.support.ErrorPageFilter.access$000(ErrorPageFilter.java:64) >>> >>> ~[spring-boot-2.5.4.jar:2.5.4] >>> at >>> org.springframework.boot.web.servlet.support.ErrorPageFilter$1.doFilterInternal(ErrorPageFilter.java:101) >>> >>> ~[spring-boot-2.5.4.jar:2.5.4] >>> at >>> org.springframework.web.filter.OncePerRequestFilter.doFilter(OncePerRequestFilter.java:119) >>> >>> ~[spring-web-5.3.9.jar:5.3.9] >>> at >>> org.springframework.boot.web.servlet.support.ErrorPageFilter.doFilter(ErrorPageFilter.java:119) >>> >>> ~[spring-boot-2.5.4.jar:2.5.4] >>> at >>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:189) >>> >>> ~[catalina.jar:9.0.54] >>> at >>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:162) >>> >>> ~[catalina.jar:9.0.54] >>> at >>> org.springframework.web.filter.CharacterEncodingFilter.doFilterInternal(CharacterEncodingFilter.java:201) >>> >>> ~[spring-web-5.3.9.jar:5.3.9] >>> at >>> org.springframework.web.filter.OncePerRequestFilter.doFilter(OncePerRequestFilter.java:119) >>> >>> ~[spring-web-5.3.9.jar:5.3.9] >>> at >>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:189) >>> >>> ~[catalina.jar:9.0.54] >>> at >>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:162) >>> >>> ~[catalina.jar:9.0.54] >>> at >>> org.apache.logging.log4j.web.Log4jServletFilter.doFilter(Log4jServletFilter.java:71) >>> >>> ~[log4j-web-2.14.1.jar:2.14.1] >>> at >>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:189) >>> >>> ~[catalina.jar:9.0.54] >>> at >>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:162) >>> >>> ~[catalina.jar:9.0.54] >>> at >>> org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:197) >>> >>> ~[catalina.jar:9.0.54] >>> at >>> org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:97) >>> >>> ~[catalina.jar:9.0.54] >>> at >>> org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:540) >>> >>> ~[catalina.jar:9.0.54] >>> at >>> org.apache.catalina.valves.AbstractAccessLogValve.invoke(AbstractAccessLogValve.java:687) >>> >>> ~[catalina.jar:9.0.54] >>> at >>> org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:135) >>> >>> ~[catalina.jar:9.0.54] >>> at >>> org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:92) >>> >>> ~[catalina.jar:9.0.54] >>> at >>> org.apache.catalina.valves.AbstractAccessLogValve.invoke(AbstractAccessLogValve.java:687) >>> >>> ~[catalina.jar:9.0.54] >>> at >>> org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:78) >>> >>> ~[catalina.jar:9.0.54] >>> at >>> org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:357) >>> ~[catalina.jar:9.0.54] >>> at >>> org.apache.coyote.http11.Http11Processor.service(Http11Processor.java:382) >>> ~[tomcat-coyote.jar:9.0.54] >>> at >>> org.apache.coyote.AbstractProcessorLight.process(AbstractProcessorLight.java:65) >>> >>> ~[tomcat-coyote.jar:9.0.54] >>> at >>> org.apache.coyote.AbstractProtocol$ConnectionHandler.process(AbstractProtocol.java:895) >>> >>> ~[tomcat-coyote.jar:9.0.54] >>> at >>> org.apache.tomcat.util.net.NioEndpoint$SocketProcessor.doRun(NioEndpoint.java:1722) >>> >>> ~[tomcat-coyote.jar:9.0.54] >>> at >>> org.apache.tomcat.util.net.SocketProcessorBase.run(SocketProcessorBase.java:49) >>> >>> ~[tomcat-coyote.jar:9.0.54] >>> at >>> org.apache.tomcat.util.threads.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1191) >>> >>> ~[tomcat-util.jar:9.0.54] >>> at >>> org.apache.tomcat.util.threads.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:659) >>> >>> ~[tomcat-util.jar:9.0.54] >>> at >>> org.apache.tomcat.util.threads.TaskThread$WrappingRunnable.run(TaskThread.java:61) >>> >>> ~[tomcat-util.jar:9.0.54] >>> at java.lang.Thread.run(Thread.java:829) [?:?] >>> >>> The following dependencies are included in build.gradle (same as >>> 6.3.7.1): >>> // CAS dependencies/modules may be listed here statically... >>> implementation "org.apereo.cas:cas-server-webapp:${casServerVersion}" >>> implementation >>> "org.apereo.cas:cas-server-support-json-service-registry:${casServerVersion}" >>> implementation >>> "org.apereo.cas:cas-server-support-ldap:${project.'cas.version'}" >>> implementation >>> "org.apereo.cas:cas-server-support-reports:${project.'cas.version'}" >>> implementation >>> "org.apereo.cas:cas-server-support-saml:${project.'cas.version'}" >>> implementation >>> "org.apereo.cas:cas-server-core-configuration-metadata-repository:${project.'cas.version'}" >>> implementation >>> "org.apereo.cas:cas-server-core-events-configuration:${project.'cas.version'}" >>> implementation >>> "org.apereo.cas:cas-server-support-pac4j-webflow:${project.'cas.version'}" >>> implementation >>> "org.apereo.cas:cas-server-support-saml-idp:${project.'cas.version'}" >>> implementation >>> "org.apereo.cas:cas-server-support-saml-idp-metadata:${project.'cas.version'}" >>> implementation >>> "org.apereo.cas:cas-server-support-saml-idp-web:${project.'cas.version'}" >>> implementation >>> "org.apereo.cas:cas-server-support-saml-idp-core:${project.'cas.version'}" >>> >>> I am delegating to a third party SAML2 IdP. I've probably been looking >>> at this for too long and am missing the obvious. Any insights are >>> appreciated. >>> >>> Thanks, >>> Noelette Stout >>> >>> -- - Website: https://apereo.github.io/cas - Gitter Chatroom: https://gitter.im/apereo/cas - List Guidelines: https://goo.gl/1VRrw7 - Contributions: https://goo.gl/mh7qDG --- You received this message because you are subscribed to the Google Groups "CAS Community" group. To unsubscribe from this group and stop receiving emails from it, send an email to cas-user+unsubscr...@apereo.org. To view this discussion on the web visit https://groups.google.com/a/apereo.org/d/msgid/cas-user/63289f27-b77a-446d-a0ff-cbbd2ab4d1d1n%40apereo.org.