Re: [cas-user] Error in CAS Management(5.2) app after authentication with the CAS Server (5.3.2)

[Dmitriy Kopylenko]

This might help 
https://apereo.github.io/cas/development/installation/Troubleshooting-Guide.html#no-subject-alternative-names

D.


From: vivekanand yaram 
Reply: cas-user@apereo.org 
Date: August 24, 2018 at 10:00:46 AM
To: cas-user@apereo.org 
Subject:  Re: [cas-user] Error in CAS Management(5.2) app after authentication 
with the CAS Server (5.3.2)  

Can some one help me to debug this 

On Fri, Aug 24, 2018, 18:18 David Curry  wrote:
javax.net.ssl.SSLHandshakeException: java.security.cert.CertificateException: 
No subject alternative names matching IP address 127.0.0.1 found 

 Your SSL certificate(s) is/are not set up correctly.

--
DAVID A. CURRY, CISSP
DIRECTOR OF INFORMATION SECURITY
INFORMATION TECHNOLOGY
71 FIFTH AVE., 9TH FL., NEW YORK, NY 10003
+1 212 229-5300 x4728 • david.cu...@newschool.edu



On Thu, Aug 23, 2018 at 11:59 PM vivekanand yaram  
wrote:
I m getting the below error CAS management console after login authentication. 
Please help 


javax.net.ssl.SSLHandshakeException: java.security.cert.CertificateException: 
No subject alternative names matching IP address 127.0.0.1 found
        at sun.security.ssl.Alerts.getSSLException(Unknown Source) 
~[?:1.8.0_181]
        at sun.security.ssl.SSLSocketImpl.fatal(Unknown Source) ~[?:1.8.0_181]
        at sun.security.ssl.Handshaker.fatalSE(Unknown Source) ~[?:1.8.0_181]
        at sun.security.ssl.Handshaker.fatalSE(Unknown Source) ~[?:1.8.0_181]
        at sun.security.ssl.ClientHandshaker.serverCertificate(Unknown Source) 
~[?:1.8.0_181]
        at sun.security.ssl.ClientHandshaker.processMessage(Unknown Source) 
~[?:1.8.0_181]
        at sun.security.ssl.Handshaker.processLoop(Unknown Source) 
~[?:1.8.0_181]
        at sun.security.ssl.Handshaker.process_record(Unknown Source) 
~[?:1.8.0_181]
        at sun.security.ssl.SSLSocketImpl.readRecord(Unknown Source) 
~[?:1.8.0_181]
        at sun.security.ssl.SSLSocketImpl.performInitialHandshake(Unknown 
Source) ~[?:1.8.0_181]
        at sun.security.ssl.SSLSocketImpl.startHandshake(Unknown Source) 
~[?:1.8.0_181]
        at sun.security.ssl.SSLSocketImpl.startHandshake(Unknown Source) 
~[?:1.8.0_181]
        at sun.net.www.protocol.https.HttpsClient.afterConnect(Unknown Source) 
~[?:1.8.0_181]
        at 
sun.net.www.protocol.https.AbstractDelegateHttpsURLConnection.connect(Unknown 
Source) ~[?:1.8.0_181]
        at sun.net.www.protocol.http.HttpURLConnection.getInputStream0(Unknown 
Source) ~[?:1.8.0_181]
        at sun.net.www.protocol.http.HttpURLConnection.getInputStream(Unknown 
Source) ~[?:1.8.0_181]
        at 
sun.net.www.protocol.https.HttpsURLConnectionImpl.getInputStream(Unknown 
Source) ~[?:1.8.0_181]
        at 
org.jasig.cas.client.util.CommonUtils.getResponseFromServer(CommonUtils.java:431)
 [cas-client-core-3.4.1.jar!/:3.4.1]
        at 
org.jasig.cas.client.validation.AbstractCasProtocolUrlBasedTicketValidator.retrieveResponseFromServer(AbstractCasProtocolUrlBasedTicketValidator.java:41)
 [cas-client-core-3.4.1.jar!/:3.4.1]
        at 
org.jasig.cas.client.validation.AbstractUrlBasedTicketValidator.validate(AbstractUrlBasedTicketValidator.java:193)
 [cas-client-core-3.4.1.jar!/:3.4.1]
        at 
org.pac4j.cas.credentials.authenticator.CasAuthenticator.validate(CasAuthenticator.java:61)
 [pac4j-cas-2.2.0.jar!/:?]
        at 
org.pac4j.cas.client.direct.DirectCasClient.retrieveCredentials(DirectCasClient.java:68)
 [pac4j-cas-2.2.0.jar!/:?]
        at 
org.pac4j.cas.client.direct.DirectCasClient.retrieveCredentials(DirectCasClient.java:37)
 [pac4j-cas-2.2.0.jar!/:?]
        at 
org.pac4j.core.client.DirectClient.getCredentials(DirectClient.java:44) 
[pac4j-core-2.2.0.jar!/:?]
        at 
org.pac4j.core.engine.DefaultSecurityLogic.perform(DefaultSecurityLogic.java:113)
 [pac4j-core-2.2.0.jar!/:?]
        at 
org.pac4j.springframework.web.SecurityInterceptor.preHandle(SecurityInterceptor.java:65)
 [spring-webmvc-pac4j-2.0.0.jar!/:?]
        at 
org.springframework.web.servlet.HandlerExecutionChain.applyPreHandle(HandlerExecutionChain.java:133)
 [spring-webmvc-4.3.14.RELEASE.jar!/:4.3.14.RELEASE]
        at 
org.springframework.web.servlet.DispatcherServlet.doDispatch(DispatcherServlet.java:962)
 [spring-webmvc-4.3.14.RELEASE.jar!/:4.3.14.RELEASE]
        at 
org.springframework.web.servlet.DispatcherServlet.doService(DispatcherServlet.java:901)
 [spring-webmvc-4.3.14.RELEASE.jar!/:4.3.14.RELEASE]
        at 
org.springframework.web.servlet.FrameworkServlet.processRequest(FrameworkServlet.java:970)
 [spring-webmvc-4.3.14.RELEASE.jar!/:4.3.14.RELEASE]
        at 
org.springframework.web.servlet.FrameworkServlet.doGet(FrameworkServlet.java:861)
 [spring-webmvc-4.3.14.RELEASE.jar!/:4.3.14.RELEASE]
        at javax.servlet.http.HttpServlet.service(HttpServlet.java:687) 
[javax.servlet-api-3.1.0.jar!/:3.1.0]
        at 
org.springframework.web.servlet.FrameworkServlet.service(FrameworkServlet.java:846)
 [spring-webmvc-4.3.14.RELEASE.jar!/:4.3.14.RELEASE]
        at 

Re: [cas-user] Error in CAS Management(5.2) app after authentication with the CAS Server (5.3.2)

[vivekanand yaram]

Can some one help me to debug this

On Fri, Aug 24, 2018, 18:18 David Curry  wrote:

> javax.net.ssl.SSLHandshakeException:
> java.security.cert.CertificateException: No subject alternative names
> matching IP address 127.0.0.1 found
>
>  Your SSL certificate(s) is/are not set up correctly.
>
> --
>
> DAVID A. CURRY, CISSP
> *DIRECTOR OF INFORMATION SECURITY*
> INFORMATION TECHNOLOGY
>
> 71 FIFTH AVE., 9TH FL., NEW YORK, NY 10003
> +1 212 229-5300 x4728 • david.cu...@newschool.edu
>
> [image: The New School]
>
>
> On Thu, Aug 23, 2018 at 11:59 PM vivekanand yaram <
> yaramvivekan...@gmail.com> wrote:
>
>> I m getting the below error CAS management console after login
>> authentication. Please help
>>
>>
>> javax.net.ssl.SSLHandshakeException:
>> java.security.cert.CertificateException: No subject alternative names
>> matching IP address 127.0.0.1 found
>> at sun.security.ssl.Alerts.getSSLException(Unknown Source)
>> ~[?:1.8.0_181]
>> at sun.security.ssl.SSLSocketImpl.fatal(Unknown Source)
>> ~[?:1.8.0_181]
>> at sun.security.ssl.Handshaker.fatalSE(Unknown Source)
>> ~[?:1.8.0_181]
>> at sun.security.ssl.Handshaker.fatalSE(Unknown Source)
>> ~[?:1.8.0_181]
>> at sun.security.ssl.ClientHandshaker.serverCertificate(Unknown
>> Source) ~[?:1.8.0_181]
>> at sun.security.ssl.ClientHandshaker.processMessage(Unknown
>> Source) ~[?:1.8.0_181]
>> at sun.security.ssl.Handshaker.processLoop(Unknown Source)
>> ~[?:1.8.0_181]
>> at sun.security.ssl.Handshaker.process_record(Unknown Source)
>> ~[?:1.8.0_181]
>> at sun.security.ssl.SSLSocketImpl.readRecord(Unknown Source)
>> ~[?:1.8.0_181]
>> at sun.security.ssl.SSLSocketImpl.performInitialHandshake(Unknown
>> Source) ~[?:1.8.0_181]
>> at sun.security.ssl.SSLSocketImpl.startHandshake(Unknown Source)
>> ~[?:1.8.0_181]
>> at sun.security.ssl.SSLSocketImpl.startHandshake(Unknown Source)
>> ~[?:1.8.0_181]
>> at sun.net.www.protocol.https.HttpsClient.afterConnect(Unknown
>> Source) ~[?:1.8.0_181]
>> at
>> sun.net.www.protocol.https.AbstractDelegateHttpsURLConnection.connect(Unknown
>> Source) ~[?:1.8.0_181]
>> at
>> sun.net.www.protocol.http.HttpURLConnection.getInputStream0(Unknown Source)
>> ~[?:1.8.0_181]
>> at
>> sun.net.www.protocol.http.HttpURLConnection.getInputStream(Unknown Source)
>> ~[?:1.8.0_181]
>> at
>> sun.net.www.protocol.https.HttpsURLConnectionImpl.getInputStream(Unknown
>> Source) ~[?:1.8.0_181]
>> at
>> org.jasig.cas.client.util.CommonUtils.getResponseFromServer(CommonUtils.java:431)
>> [cas-client-core-3.4.1.jar!/:3.4.1]
>> at
>> org.jasig.cas.client.validation.AbstractCasProtocolUrlBasedTicketValidator.retrieveResponseFromServer(AbstractCasProtocolUrlBasedTicketValidator.java:41)
>> [cas-client-core-3.4.1.jar!/:3.4.1]
>> at
>> org.jasig.cas.client.validation.AbstractUrlBasedTicketValidator.validate(AbstractUrlBasedTicketValidator.java:193)
>> [cas-client-core-3.4.1.jar!/:3.4.1]
>> at
>> org.pac4j.cas.credentials.authenticator.CasAuthenticator.validate(CasAuthenticator.java:61)
>> [pac4j-cas-2.2.0.jar!/:?]
>> at
>> org.pac4j.cas.client.direct.DirectCasClient.retrieveCredentials(DirectCasClient.java:68)
>> [pac4j-cas-2.2.0.jar!/:?]
>> at
>> org.pac4j.cas.client.direct.DirectCasClient.retrieveCredentials(DirectCasClient.java:37)
>> [pac4j-cas-2.2.0.jar!/:?]
>> at
>> org.pac4j.core.client.DirectClient.getCredentials(DirectClient.java:44)
>> [pac4j-core-2.2.0.jar!/:?]
>> at
>> org.pac4j.core.engine.DefaultSecurityLogic.perform(DefaultSecurityLogic.java:113)
>> [pac4j-core-2.2.0.jar!/:?]
>> at
>> org.pac4j.springframework.web.SecurityInterceptor.preHandle(SecurityInterceptor.java:65)
>> [spring-webmvc-pac4j-2.0.0.jar!/:?]
>> at
>> org.springframework.web.servlet.HandlerExecutionChain.applyPreHandle(HandlerExecutionChain.java:133)
>> [spring-webmvc-4.3.14.RELEASE.jar!/:4.3.14.RELEASE]
>> at
>> org.springframework.web.servlet.DispatcherServlet.doDispatch(DispatcherServlet.java:962)
>> [spring-webmvc-4.3.14.RELEASE.jar!/:4.3.14.RELEASE]
>> at
>> org.springframework.web.servlet.DispatcherServlet.doService(DispatcherServlet.java:901)
>> [spring-webmvc-4.3.14.RELEASE.jar!/:4.3.14.RELEASE]
>> at
>> org.springframework.web.servlet.FrameworkServlet.processRequest(FrameworkServlet.java:970)
>> [spring-webmvc-4.3.14.RELEASE.jar!/:4.3.14.RELEASE]
>> at
>> org.springframework.web.servlet.FrameworkServlet.doGet(FrameworkServlet.java:861)
>> [spring-webmvc-4.3.14.RELEASE.jar!/:4.3.14.RELEASE]
>> at javax.servlet.http.HttpServlet.service(HttpServlet.java:687)
>> [javax.servlet-api-3.1.0.jar!/:3.1.0]
>> at
>> org.springframework.web.servlet.FrameworkServlet.service(FrameworkServlet.java:846)
>> [spring-webmvc-4.3.14.RELEASE.jar!/:4.3.14.RELEASE]
>> at javax.servlet.http.HttpServlet.service(HttpServlet.java:790)

Re: [cas-user] Error in CAS Management(5.2) app after authentication with the CAS Server (5.3.2)

[David Curry]

javax.net.ssl.SSLHandshakeException:
java.security.cert.CertificateException: No subject alternative names
matching IP address 127.0.0.1 found

 Your SSL certificate(s) is/are not set up correctly.

--

DAVID A. CURRY, CISSP
*DIRECTOR OF INFORMATION SECURITY*
INFORMATION TECHNOLOGY

71 FIFTH AVE., 9TH FL., NEW YORK, NY 10003
+1 212 229-5300 x4728 • david.cu...@newschool.edu

[image: The New School]


On Thu, Aug 23, 2018 at 11:59 PM vivekanand yaram 
wrote:

> I m getting the below error CAS management console after login
> authentication. Please help
>
>
> javax.net.ssl.SSLHandshakeException:
> java.security.cert.CertificateException: No subject alternative names
> matching IP address 127.0.0.1 found
> at sun.security.ssl.Alerts.getSSLException(Unknown Source)
> ~[?:1.8.0_181]
> at sun.security.ssl.SSLSocketImpl.fatal(Unknown Source)
> ~[?:1.8.0_181]
> at sun.security.ssl.Handshaker.fatalSE(Unknown Source)
> ~[?:1.8.0_181]
> at sun.security.ssl.Handshaker.fatalSE(Unknown Source)
> ~[?:1.8.0_181]
> at sun.security.ssl.ClientHandshaker.serverCertificate(Unknown
> Source) ~[?:1.8.0_181]
> at sun.security.ssl.ClientHandshaker.processMessage(Unknown
> Source) ~[?:1.8.0_181]
> at sun.security.ssl.Handshaker.processLoop(Unknown Source)
> ~[?:1.8.0_181]
> at sun.security.ssl.Handshaker.process_record(Unknown Source)
> ~[?:1.8.0_181]
> at sun.security.ssl.SSLSocketImpl.readRecord(Unknown Source)
> ~[?:1.8.0_181]
> at sun.security.ssl.SSLSocketImpl.performInitialHandshake(Unknown
> Source) ~[?:1.8.0_181]
> at sun.security.ssl.SSLSocketImpl.startHandshake(Unknown Source)
> ~[?:1.8.0_181]
> at sun.security.ssl.SSLSocketImpl.startHandshake(Unknown Source)
> ~[?:1.8.0_181]
> at sun.net.www.protocol.https.HttpsClient.afterConnect(Unknown
> Source) ~[?:1.8.0_181]
> at
> sun.net.www.protocol.https.AbstractDelegateHttpsURLConnection.connect(Unknown
> Source) ~[?:1.8.0_181]
> at
> sun.net.www.protocol.http.HttpURLConnection.getInputStream0(Unknown Source)
> ~[?:1.8.0_181]
> at
> sun.net.www.protocol.http.HttpURLConnection.getInputStream(Unknown Source)
> ~[?:1.8.0_181]
> at
> sun.net.www.protocol.https.HttpsURLConnectionImpl.getInputStream(Unknown
> Source) ~[?:1.8.0_181]
> at
> org.jasig.cas.client.util.CommonUtils.getResponseFromServer(CommonUtils.java:431)
> [cas-client-core-3.4.1.jar!/:3.4.1]
> at
> org.jasig.cas.client.validation.AbstractCasProtocolUrlBasedTicketValidator.retrieveResponseFromServer(AbstractCasProtocolUrlBasedTicketValidator.java:41)
> [cas-client-core-3.4.1.jar!/:3.4.1]
> at
> org.jasig.cas.client.validation.AbstractUrlBasedTicketValidator.validate(AbstractUrlBasedTicketValidator.java:193)
> [cas-client-core-3.4.1.jar!/:3.4.1]
> at
> org.pac4j.cas.credentials.authenticator.CasAuthenticator.validate(CasAuthenticator.java:61)
> [pac4j-cas-2.2.0.jar!/:?]
> at
> org.pac4j.cas.client.direct.DirectCasClient.retrieveCredentials(DirectCasClient.java:68)
> [pac4j-cas-2.2.0.jar!/:?]
> at
> org.pac4j.cas.client.direct.DirectCasClient.retrieveCredentials(DirectCasClient.java:37)
> [pac4j-cas-2.2.0.jar!/:?]
> at
> org.pac4j.core.client.DirectClient.getCredentials(DirectClient.java:44)
> [pac4j-core-2.2.0.jar!/:?]
> at
> org.pac4j.core.engine.DefaultSecurityLogic.perform(DefaultSecurityLogic.java:113)
> [pac4j-core-2.2.0.jar!/:?]
> at
> org.pac4j.springframework.web.SecurityInterceptor.preHandle(SecurityInterceptor.java:65)
> [spring-webmvc-pac4j-2.0.0.jar!/:?]
> at
> org.springframework.web.servlet.HandlerExecutionChain.applyPreHandle(HandlerExecutionChain.java:133)
> [spring-webmvc-4.3.14.RELEASE.jar!/:4.3.14.RELEASE]
> at
> org.springframework.web.servlet.DispatcherServlet.doDispatch(DispatcherServlet.java:962)
> [spring-webmvc-4.3.14.RELEASE.jar!/:4.3.14.RELEASE]
> at
> org.springframework.web.servlet.DispatcherServlet.doService(DispatcherServlet.java:901)
> [spring-webmvc-4.3.14.RELEASE.jar!/:4.3.14.RELEASE]
> at
> org.springframework.web.servlet.FrameworkServlet.processRequest(FrameworkServlet.java:970)
> [spring-webmvc-4.3.14.RELEASE.jar!/:4.3.14.RELEASE]
> at
> org.springframework.web.servlet.FrameworkServlet.doGet(FrameworkServlet.java:861)
> [spring-webmvc-4.3.14.RELEASE.jar!/:4.3.14.RELEASE]
> at javax.servlet.http.HttpServlet.service(HttpServlet.java:687)
> [javax.servlet-api-3.1.0.jar!/:3.1.0]
> at
> org.springframework.web.servlet.FrameworkServlet.service(FrameworkServlet.java:846)
> [spring-webmvc-4.3.14.RELEASE.jar!/:4.3.14.RELEASE]
> at javax.servlet.http.HttpServlet.service(HttpServlet.java:790)
> [javax.servlet-api-3.1.0.jar!/:3.1.0]
> at
> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:231)
> [tomcat-embed-core-8.5.28.jar!/:8.5.28]
> at
> 

Re: [cas-user] CAS 5.3.2 Client with angular js

[vivekanand yaram]

I m working on a poc with CAS , looking for sangular js client , simple
login and logout should be okay .

On Fri, Aug 24, 2018, 09:36 vivekanand yaram 
wrote:

> Hello , Any body has sample angular js client for CAS .
>
> Regards,
> Vivekanand .
>
> --
> - Website: https://apereo.github.io/cas
> - Gitter Chatroom: https://gitter.im/apereo/cas
> - List Guidelines: https://goo.gl/1VRrw7
> - Contributions: https://goo.gl/mh7qDG
> ---
> You received this message because you are subscribed to the Google Groups
> "CAS Community" group.
> To unsubscribe from this group and stop receiving emails from it, send an
> email to cas-user+unsubscr...@apereo.org.
> To view this discussion on the web visit
> https://groups.google.com/a/apereo.org/d/msgid/cas-user/590e8476-b0b4-4623-8d13-0abbc1013d8f%40apereo.org
> 
> .
>

-- 
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines: https://goo.gl/1VRrw7
- Contributions: https://goo.gl/mh7qDG
--- 
You received this message because you are subscribed to the Google Groups "CAS 
Community" group.
To unsubscribe from this group and stop receiving emails from it, send an email 
to cas-user+unsubscr...@apereo.org.
To view this discussion on the web visit 
https://groups.google.com/a/apereo.org/d/msgid/cas-user/CABprqJW1C4C7rCUJ2ZxaBjguqg3taKk0EbGu5fNaExH-EhzGqw%40mail.gmail.com.

[cas-user] Is there any Go implementation for CAS

[Florent Thomas]

Hi everyone,

Is there any GO implementation for CAS protocol?
I do'nt find it on 
https://apereo.github.io/cas/5.3.x/installation/Service-Management.html

Thanks for your feedback

-- 
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines: https://goo.gl/1VRrw7
- Contributions: https://goo.gl/mh7qDG
--- 
You received this message because you are subscribed to the Google Groups "CAS 
Community" group.
To unsubscribe from this group and stop receiving emails from it, send an email 
to cas-user+unsubscr...@apereo.org.
To view this discussion on the web visit 
https://groups.google.com/a/apereo.org/d/msgid/cas-user/519f31cb-884a-43af-80d3-103381aba16e%40apereo.org.

[cas-user] Re: OIDC issue since 5.3.2

[Gregory G]

Issue self resolved : removed a very old service definition for cas backend

Le vendredi 24 août 2018 00:03:42 UTC+2, Gregory G a écrit :
>
> Hello,
>
> Since i ve migrated to CAS 5.3.2 from 5.2.4, i'm not unable to do an 
> OpenID Connect
>
> With IDEA dev env, connection passes but on prod environment, it is broken
>
> My cas properties for OIDC
>
> #OIDC
>
> cas.authn.oidc.jwksFile=file:/home/cas/cas_files/keystore.jwks
>
> cas.authn.oidc.claimsMap.preferred_username=sAMAccountName
>
> cas.authn.oidc.claimsMap.name=cn
>
> cas.authn.oidc.claimsMap.id=id
>
> cas.authn.oidc.claimsMap.email=mail
>
>
> cas.authn.oidc.scopes=openid,profile,email,address,phone,offline_access,testScope
>
>
> cas.authn.oidc.userDefinedScopes.testScope=preferred_username,name,email,mail,uid,id
>
> And the log of error
>
> 2018-08-23 23:58:51,365 ERROR 
> [org.apache.catalina.core.ContainerBase.[Tomcat].[localhost].[/cas].[dispatcherServlet]]
>  
> -  [/cas] threw exception [Request processing failed; nested exception is 
> java.lang.IllegalStateException: Cannot find service ticket issues to 
> https://cas.example.com/cas/oauth2.0/callbackAuthorize.* as part of the 
> authentication context] with root cause>
> java.lang.IllegalStateException: Cannot find service ticket issues to 
> https://cas.example.com/cas/oauth2.0/callbackAuthorize.* as part of the 
> authentication context
> at com.google.common.base.Preconditions.checkState(Preconditions.java:504) 
> ~[guava-25.0-jre.jar!/:?]
> at 
> org.apereo.cas.oidc.token.OidcIdTokenGeneratorService.getOAuthServiceTicket(OidcIdTokenGeneratorService.java:178)
>  
> ~[cas-server-support-oidc-5.3.2.jar!/:5.3.2]
> at 
> org.apereo.cas.oidc.token.OidcIdTokenGeneratorService.produceIdTokenClaims(OidcIdTokenGeneratorService.java:134)
>  
> ~[cas-server-support-oidc-5.3.2.jar!/:5.3.2]
> at 
> org.apereo.cas.oidc.token.OidcIdTokenGeneratorService.generate(OidcIdTokenGeneratorService.java:103)
>  
> ~[cas-server-support-oidc-5.3.2.jar!/:5.3.2]
> at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) 
> ~[?:1.8.0_144]
> at 
> sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:62) 
> ~[?:1.8.0_144]
> at 
> sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
>  
> ~[?:1.8.0_144]
> at java.lang.reflect.Method.invoke(Method.java:498) ~[?:1.8.0_144]
> at 
> org.springframework.util.ReflectionUtils.invokeMethod(ReflectionUtils.java:216)
>  
> ~[spring-core-4.3.18.RELEASE.jar!/:4.3.18.RELEASE]
> at 
> org.springframework.cloud.context.scope.GenericScope$LockedScopedProxyFactoryBean.invoke(GenericScope.java:470)
>  
> ~[spring-cloud-context-1.3.0.RELEASE.jar!/:1.3.0.RELEASE]
> at 
> org.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:179)
>  
> ~[spring-aop-4.3.18.RELEASE.jar!/:4.3.18.RELEASE]
> at 
> org.springframework.aop.framework.CglibAopProxy$DynamicAdvisedInterceptor.intercept(CglibAopProxy.java:671)
>  
> ~[spring-aop-4.3.18.RELEASE.jar!/:4.3.18.RELEASE]
> at 
> org.apereo.cas.oidc.token.OidcIdTokenGeneratorService$$EnhancerBySpringCGLIB$$8505662.generate()
>  
> ~[cas-server-support-oidc-5.3.2.jar!/:5.3.2]
> at 
> org.apereo.cas.oidc.web.OidcAccessTokenResponseGenerator.generateJsonInternal(OidcAccessTokenResponseGenerator.java:44)
>  
> ~[cas-server-support-oidc-5.3.2.jar!/:5.3.2]
> at 
> org.apereo.cas.support.oauth.web.response.accesstoken.OAuth20AccessTokenResponseGenerator.generate(OAuth20AccessTokenResponseGenerator.java:64)
>  
> ~[cas-server-support-oauth-5.3.2.jar!/:5.3.2]
> at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) 
> ~[?:1.8.0_144]
> at 
> sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:62) 
> ~[?:1.8.0_144]
> at 
> sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
>  
> ~[?:1.8.0_144]
> at java.lang.reflect.Method.invoke(Method.java:498) ~[?:1.8.0_144]
> at 
> org.springframework.util.ReflectionUtils.invokeMethod(ReflectionUtils.java:216)
>  
> ~[spring-core-4.3.18.RELEASE.jar!/:4.3.18.RELEASE]
> at 
> org.springframework.cloud.context.scope.GenericScope$LockedScopedProxyFactoryBean.invoke(GenericScope.java:470)
>  
> ~[spring-cloud-context-1.3.0.RELEASE.jar!/:1.3.0.RELEASE]
> at 
> org.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:179)
>  
> ~[spring-aop-4.3.18.RELEASE.jar!/:4.3.18.RELEASE]
> at 
> org.springframework.aop.framework.JdkDynamicAopProxy.invoke(JdkDynamicAopProxy.java:213)
>  
> ~[spring-aop-4.3.18.RELEASE.jar!/:4.3.18.RELEASE]
> at com.sun.proxy.$Proxy203.generate(Unknown Source) ~[?:?]
> at 
> org.apereo.cas.support.oauth.web.endpoints.OAuth20AccessTokenEndpointController.generateAccessTokenResponse(OAuth20AccessTokenEndpointController.java:147)
>  
> ~[cas-server-support-oauth-5.3.2.jar!/:5.3.2]
> at 
>